F5

Big-ip

66 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.7

CVE-2025-36557

  • EPSS 0.15%
  • Veröffentlicht 07.05.2025 22:15:20
  • Zuletzt bearbeitet 06.08.2025 18:14:59

When an HTTP profile with the Enforce RFC Compliance option is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (...

8.7

CVE-2025-41414

  • EPSS 0.17%
  • Veröffentlicht 07.05.2025 22:15:20
  • Zuletzt bearbeitet 21.10.2025 18:43:21

When HTTP/2 client and server profile is configured on a virtual server, undisclosed requests can cause TMM to terminate.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

8.7

CVE-2025-41431

  • EPSS 0.15%
  • Veröffentlicht 07.05.2025 22:15:20
  • Zuletzt bearbeitet 06.08.2025 16:25:30

When connection mirroring is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate in the standby BIG-IP systems in a traffic group. Note: Software versions which have reached End of T...

8.7

CVE-2025-41433

  • EPSS 0.17%
  • Veröffentlicht 07.05.2025 22:15:20
  • Zuletzt bearbeitet 21.10.2025 18:43:41

When a Session Initiation Protocol (SIP) message routing framework (MRF) application layer gateway (ALG) profile is configured on a Message Routing virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. ...

8.7

CVE-2025-41399

Medienbericht
  • EPSS 0.15%
  • Veröffentlicht 07.05.2025 22:15:20
  • Zuletzt bearbeitet 21.10.2025 18:43:09

When a Stream Control Transmission Protocol (SCTP) profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are no...

8.7

CVE-2025-36525

  • EPSS 0.15%
  • Veröffentlicht 07.05.2025 22:15:19
  • Zuletzt bearbeitet 29.09.2025 21:30:43

When a BIG-IP APM virtual server is configured to use a PingAccess profile, undisclosed requests can cause TMM to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

8.7

CVE-2025-36504

  • EPSS 0.15%
  • Veröffentlicht 07.05.2025 22:15:19
  • Zuletzt bearbeitet 21.10.2025 18:42:48

When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increase in memory resource utilization.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

8.7

CVE-2025-35995

  • EPSS 0.15%
  • Veröffentlicht 07.05.2025 22:15:19
  • Zuletzt bearbeitet 29.09.2025 21:30:36

When a BIG-IP PEM system is licensed with URL categorization, and the URL categorization policy or an iRule with the urlcat command is enabled on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. ...

8.7

CVE-2025-31644

Medienbericht
  • EPSS 0.12%
  • Veröffentlicht 07.05.2025 22:15:18
  • Zuletzt bearbeitet 21.10.2025 18:42:36

When running in Appliance mode, a command injection vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) command which may allow an authenticated attacker with administrator role privileges to execute arbitrary system com...

8.7

CVE-2025-24497

  • EPSS 0.34%
  • Veröffentlicht 05.02.2025 18:15:35
  • Zuletzt bearbeitet 06.08.2025 16:19:57

When URL categorization is configured on a virtual server, undisclosed requests can cause TMM to terminate.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.