Big-ip Advanced Web Application Firewall@* Security Vulnerabilities and Issues — Page 3 of Big-ip Advanced Web Application Firewall@* CVE List

Lucene search

F5Big-ip Advanced Web Application Firewall*

103 matches found

CVE•added 2024/02/14 5:15 p.m.•40 views

CVE-2024-23603

An SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

8.8CVSS5.3AI score0.00274EPSS

CVE•added 2024/02/14 5:15 p.m.•37 views

CVE-2024-21849

When an Advanced WAF/ASM security policy and a Websockets profile are configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) process to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

7.5CVSS7.6AI score0.00308EPSS

CVE•added 2024/02/14 5:15 p.m.•30 views

CVE-2024-23308

When a BIG-IP Advanced WAF or BIG-IP ASM policy with a Request Body Handling option is attached to a virtual server, undisclosed requests can cause the BD process to terminate. The condition results from setting the Request Body Handling option in the Header-Based Content Profile for an Allowed URL...

7.5CVSS7.6AI score0.00362EPSS

Total number of security vulnerabilities103