Big-ip Edge Gateway Security Vulnerabilities and Issues — Big-ip Edge Gateway CVE List

Lucene search

F5Big-ip Edge Gateway

4 matches found

CVE•added 2020/04/30 10:15 p.m.•72 views

CVE-2020-5892

In versions 7.1.5-7.1.8, the BIG-IP Edge Client components in BIG-IP APM, Edge Gateway, and FirePass legacy allow attackers to obtain the full session ID from process memory.

6.7CVSS6.4AI score0.00092EPSS

CVE•added 2020/04/30 9:15 p.m.•58 views

CVE-2020-5887

On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for remote attackers to access local daemons and bypass port lockdown settings.

9.1CVSS8.9AI score0.00372EPSS

CVE•added 2020/04/30 9:15 p.m.•43 views

CVE-2020-5883

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, when a virtual server is configured with HTTP explicit proxy and has an attached HTTP_PROXY_REQUEST iRule, POST requests sent to the virtual server cause an xdata memory leak.

7.5CVSS7.5AI score0.00647EPSS

CVE•added 2020/04/30 9:15 p.m.•39 views

CVE-2020-5882

On BIG-IP 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5, and 11.6.1-11.6.5.1, under certain conditions, the Intel QuickAssist Technology (QAT) cryptography driver may produce a Traffic Management Microkernel (TMM) core file.

7.5CVSS7.4AI score0.00647EPSS