Big-ip Access Policy Manager@17.1.0 Security Vulnerabilities and Issues — Big-ip Access Policy Manager@17.1.0 CVE List

Lucene search

F5Big-ip Access Policy Manager17.1.0

5 matches found

CVE•added 2023/10/10 2:15 p.m.•4423 views

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

7.5CVSS8AI score0.94434EPSS

CVE•added 2023/10/10 1:15 p.m.•74 views

CVE-2023-40534

When a client-side HTTP/2 profile and the HTTP MRF Router option are enabled for a virtual server, and an iRule using the HTTP_REQUEST event or Local Traffic Policy are associated with the virtual server, undisclosed requests can cause TMM to terminate. Note: Software versions which have reached En...

7.5CVSS7.6AI score0.00571EPSS

CVE•added 2023/10/10 1:15 p.m.•67 views

CVE-2023-5450

An insufficient verification of data vulnerability exists in BIG-IP Edge Client Installer on macOS that may allow an attacker elevation of privileges during the installation process. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

7.8CVSS7.2AI score0.00173EPSS

CVE•added 2023/09/27 4:21 p.m.•60 views

CVE-2023-43125

BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

8.2CVSS7.4AI score0.0015EPSS

CVE•added 2023/09/27 4:21 p.m.•56 views

CVE-2023-43124

BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

7.1CVSS6AI score0.00079EPSS