Big-ip Access Policy Manager Client Security Vulnerabilities and Issues — Big-ip Access Policy Manager Client CVE List

Lucene search

F5Big-ip Access Policy Manager Client

4 matches found

CVE•added 2022/01/25 8:15 p.m.•119 views

CVE-2022-23032

In all versions before 7.2.1.4, when proxy settings are configured in the network access resource of a BIG-IP APM system, connecting BIG-IP Edge Client on Mac and Windows is vulnerable to a DNS rebinding attack. Note: Software versions which have reached End of Technical Support (EoTS) are not eval...

5.3CVSS5.6AI score0.00123EPSS

CVE•added 2022/05/05 5:15 p.m.•100 views

CVE-2022-27636

On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions prior to 7.2.1.5, BIG-IP Edge Client may log sensitive APM ...

5.5CVSS5.6AI score0.00231EPSS

CVE•added 2018/10/19 1:29 p.m.•75 views

CVE-2018-15316

In F5 BIG-IP APM 13.0.0-13.1.1.1, APM Client 7.1.5-7.1.6, and/or Edge Client 7101-7160, the BIG-IP APM Edge Client component loads the policy library with user permission and bypassing the endpoint checks.

5.5CVSS5.4AI score0.00147EPSS

CVE•added 2020/05/12 4:15 p.m.•43 views

CVE-2020-5898

In versions 7.1.5-7.1.9, BIG-IP Edge Client Windows Stonewall driver does not sanitize the pointer received from the userland. A local user on the Windows client system can send crafted DeviceIoControl requests to \.\urvpndrv device causing the Windows kernel to crash.

5.5CVSS5.5AI score0.00067EPSS