Lucene search
+L

7 matches found

CVE
CVE
added 2005/05/31 4:0 a.m.139 views

CVE-2005-0356

CVE-2005-0356 affects F5 BIG-IP BIG-IP LTM 9.0.0–9.0.5; other listed BIG-IP lines are not affected (e.g., 9.1.x, 9.2.x, 9.3.x, 9.4.x, 9.6.x are Not Affected). The issue is described as inadequate validation for TCP segments with PAWS/timestamps, enabling a remote attacker to cause a denial of ser...

5CVSS6.2AI score0.83284EPSS
CVE
CVE
added 2012/07/09 10:0 p.m.109 views

CVE-2012-1493

CVE-2012-1493 affects F5 BIG-IP appliances (9.x before 9.4.8-HF5; 10.x before 10.2.4; 11.0.x before 11.0.0-HF2; 11.1.x before 11.1.0-HF3) and Enterprise Manager variants; a single SSH private key is used across different customers and access is not properly restricted, enabling remote SSH logins ...

7.8CVSS9.1AI score0.63078EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.81 views

CVE-1999-1550

CVE-1999-1550 affects F5 BIG/ip 2.1.2 and earlier. The bigconf.conf CGI accepts a target file via the file parameter, enabling remote attackers to read arbitrary files on the affected device. This is the concrete detail reported across CVE listings and Nessus-related entries. There is no informat...

5CVSS6.7AI score0.08593EPSS
CVE
CVE
added 2005/07/12 4:0 a.m.65 views

CVE-2005-2245

The provided connected documents confirm a vulnerability in F5 BIG-IP versions 9.0.2 through 9.1 that allows attackers to subvert the authentication of SSL transactions. The root cause and attack vectors are described as unknown, with possible involvement of NATIVE ciphers, but no concrete exploi...

7.5CVSS7.2AI score0.01404EPSS
CVE
CVE
added 2008/01/15 7:0 p.m.58 views

CVE-2008-0265

F5 BIG-IP TMUI (Configuration utility) contains multiple XSS vulnerabilities (CVE-2008-0265) in the SearchString parameter across several list JSPs (list_system.jsp, list_pktfilter.jsp, list_ltm.jsp, resources_audit.jsp, list_asm.jsp, and list.jsp in various dirs). The issue affects BIG-IP LTM/GT...

4.3CVSS5.7AI score0.03485EPSS
Web
CVE
CVE
added 2008/03/25 7:0 p.m.54 views

CVE-2008-1503

CVE-2008-1503 affects F5 BIG-IP 9.4.3 web management interface. The vulnerability is a Cross-site Scripting (XSS) flaw exploitable via user-supplied input in the node object name, or the sysContact/sysLocation SNMP configuration fields (Audit Log XSS). The notes suggest CSRF as a possible related...

4.3CVSS6AI score0.01033EPSS
CVE
CVE
added 2009/03/16 4:0 p.m.52 views

CVE-2008-6474

The CVE-2008-6474 issue affects F5 BIG-IP 9.4.3 (management CLI/Web interface). The vulnerability is a remote code-injection where remote authenticated users with Resource Manager privileges can exploit unsanitized input related to Perl EP3 templates to create arbitrary Perl code execution with t...

9CVSS7AI score0.02709EPSS