Big-ip Advanced Firewall Manager@14.1.0.1 Security Vulnerabilities and Issues — Big-ip Advanced Firewall Manager@14.1.0.1 CVE List

Lucene search

F5Big-ip Advanced Firewall Manager14.1.0.1

4 matches found

CVE•added 2019/07/03 6:15 p.m.•65 views

CVE-2019-6629

On BIG-IP 14.1.0-14.1.0.5, undisclosed SSL traffic to a virtual server configured with a Client SSL profile may cause TMM to fail and restart. The Client SSL profile must have session tickets enabled and use DHE cipher suites to be affected. This only impacts the data plane, there is no impact to t...

7.5CVSS7.4AI score0.00702EPSS

CVE•added 2019/05/03 8:29 p.m.•57 views

CVE-2019-6618

On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2-11.5.8, users with the Resource Administrator role can modify sensitive portions of the filesystem if provided Advanced Shell Access, such as editing /etc/passwd. This allows modifications to user objects and is ...

4.9CVSS5.1AI score0.00162EPSS

CVE•added 2019/02/26 3:29 p.m.•51 views

CVE-2019-6592

On BIG-IP 14.1.0-14.1.0.1, TMM may restart and produce a core file when validating SSL certificates in client SSL or server SSL profiles.

9.1CVSS9.2AI score0.00327EPSS

CVE•added 2020/11/05 8:15 p.m.•43 views

CVE-2020-5943

In versions 14.1.0-14.1.0.1 and 14.1.2.5-14.1.2.7, when a BIG-IP object is created or listed through the REST interface, the protected fields are obfuscated in the REST response, not protected via a SecureVault cryptogram as TMSH does. One example of protected fields is the GTM monitor password.

6.5CVSS6.4AI score0.00154EPSS