Big-ip Application Acceleration Manager Security Vulnerabilities and Issues — Big-ip Application Acceleration Manager CVE List

Lucene search

F5Big-ip Application Acceleration Manager

5 matches found

CVE•added 2019/02/20 4:29 p.m.•1358 views

CVE-2019-8331

In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.

6.1CVSS5.8AI score0.01462EPSS

CVE•added 2019/02/27 11:29 p.m.•793 views

CVE-2019-1559

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is receiv...

5.9CVSS6.3AI score0.06225EPSS

CVE•added 2019/02/15 3:29 p.m.•502 views

CVE-2019-6974

In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free.

8.1CVSS7.7AI score0.0834EPSS

CVE•added 2019/02/24 12:29 a.m.•216 views

CVE-2019-9075

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is a heap-based buffer overflow in _bfd_archive_64_bit_slurp_armap in archive64.c.

7.8CVSS7.7AI score0.00285EPSS

CVE•added 2019/02/14 12:29 a.m.•56 views

CVE-2019-6589

On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.3, 12.1.0-12.1.3.7, and 11.6.0-11.6.3.2, a reflected Cross Site Scripting (XSS) vulnerability is present in an undisclosed page of the BIG-IP TMUI (Traffic Management User Interface) also known as the BIG-IP configuration utility.

6.1CVSS6AI score0.00294EPSS