Big-ip Application Security Manager Security Vulnerabilities and Issues — Big-ip Application Security Manager CVE List

Lucene search

F5Big-ip Application Security Manager

4 matches found

CVE•added 2018/10/19 1:29 p.m.•57 views

CVE-2018-15315

On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a reflected Cross Site Scripting (XSS) vulnerability in an undisclosed Configuration Utility page.

6.1CVSS6AI score0.00259EPSS

CVE•added 2018/10/19 1:29 p.m.•52 views

CVE-2018-15312

On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, a reflected Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an authenticated user to execute JavaScript for the currently logged-in user.

6.1CVSS5.9AI score0.00259EPSS

CVE•added 2018/10/10 2:29 p.m.•48 views

CVE-2018-15311

When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.5.1-11.5.6 is processing specially crafted TCP traffic with the Large Receive Offload (LRO) feature enabled, TMM may crash, leading to a failover event. This vulnerability is not exposed unless LRO is enabled, so most affected ...

5.9CVSS6.1AI score0.03533EPSS

CVE•added 2018/10/08 7:29 p.m.•46 views

CVE-2016-7475

Under some circumstances on BIG-IP 12.0.0-12.1.0, 11.6.0-11.6.1, or 11.4.0-11.5.4 HF1, the Traffic Management Microkernel (TMM) may not properly clean-up pool member network connections when using SPDY or HTTP/2 virtual server profiles.

7.5CVSS7.5AI score0.00647EPSS