Big-ip Access Policy Manager Security Vulnerabilities and Issues — Big-ip Access Policy Manager CVE List

Lucene search

F5Big-ip Access Policy Manager

3 matches found

CVE•added 2020/05/12 4:15 p.m.•49 views

CVE-2020-5897

In versions 7.1.5-7.1.9, there is use-after-free memory vulnerability in the BIG-IP Edge Client Windows ActiveX component.

8.8CVSS8.6AI score0.0086EPSS

CVE•added 2020/05/12 4:15 p.m.•46 views

CVE-2020-5896

On versions 7.1.5-7.1.9, the BIG-IP Edge Client's Windows Installer Service's temporary folder has weak file and folder permissions.

7.8CVSS7.6AI score0.00062EPSS

CVE•added 2020/05/12 4:15 p.m.•43 views

CVE-2020-5898

In versions 7.1.5-7.1.9, BIG-IP Edge Client Windows Stonewall driver does not sanitize the pointer received from the userland. A local user on the Windows client system can send crafted DeviceIoControl requests to \.\urvpndrv device causing the Windows kernel to crash.

5.5CVSS5.5AI score0.00067EPSS