Big-iq Centralized Management@5.4.0 Security Vulnerabilities and Issues — Big-iq Centralized Management@5.4.0 CVE List

Lucene search

F5Big-iq Centralized Management5.4.0

3 matches found

CVE•added 2019/07/26 12:15 a.m.•520 views

CVE-2019-10744

Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. The function defaultsDeep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.

9.1CVSS8.9AI score0.0341EPSS

CVE•added 2020/09/25 2:15 p.m.•54 views

CVE-2020-5930

In BIG-IP 15.0.0-15.1.0.4, 14.1.0-14.1.2.7, 13.1.0-13.1.3.3, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2 and BIG-IQ 5.2.0-7.1.0, unauthenticated attackers can cause disruption of service via undisclosed methods.

7.5CVSS7.5AI score0.0086EPSS

CVE•added 2020/08/26 3:15 p.m.•40 views

CVE-2020-5923

In BIG-IP versions 15.0.0-15.1.0.4, 14.1.0-14.1.2.6, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1 and BIG-IQ versions 5.4.0-7.0.0, Self-IP port-lockdown bypass via IPv6 link-local addresses.

5.4CVSS5.5AI score0.00073EPSS