Big-ip Access Policy Manager@14.0.0 Security Vulnerabilities and Issues — Big-ip Access Policy Manager@14.0.0 CVE List

Lucene search

F5Big-ip Access Policy Manager14.0.0

5 matches found

CVE•added 2018/08/06 8:29 p.m.•439 views

CVE-2018-5390

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

7.8CVSS7.5AI score0.19919EPSS

CVE•added 2018/12/06 2:0 p.m.•53 views

CVE-2018-15332

The svpn component of the F5 BIG-IP APM client prior to version 7.1.7.2 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host in a race condition.

7CVSS6.5AI score0.00123EPSS

CVE•added 2018/07/19 2:29 p.m.•45 views

CVE-2018-5535

On F5 BIG-IP 14.0.0, 13.0.0-13.1.0, 12.1.0-12.1.3, or 11.5.1-11.6.3 specifically crafted HTTP responses, when processed by a Virtual Server with an associated QoE profile that has Video enabled, may cause TMM to incorrectly buffer response data causing the TMM to restart resulting in a Denial of Se...

7.5CVSS7.5AI score0.01305EPSS

CVE•added 2018/12/12 2:29 p.m.•44 views

CVE-2018-15328

On BIG-IP 14.0.x, 13.x, 12.x, and 11.x, Enterprise Manager 3.1.1, BIG-IQ 6.x, 5.x, and 4.x, and iWorkflow 2.x, the passphrases for SNMPv3 users and trap destinations that are used for authentication and privacy are not handled by the BIG-IP system Secure Vault feature; they are written in the clear...

7.5CVSS7.6AI score0.02179EPSS

CVE•added 2018/07/25 2:29 p.m.•36 views

CVE-2018-5536

A remote attacker via undisclosed measures, may be able to exploit an F5 BIG-IP APM 13.0.0-13.1.0.7 or 12.1.0-12.1.3.5 virtual server configured with an APM per-request policy object and cause a memory leak in the APM module.

7.5CVSS7.4AI score0.0115EPSS