CVE-2020-5883
- EPSS 1.28%
- Veröffentlicht 30.04.2020 21:15:17
- Zuletzt bearbeitet 21.11.2024 05:34:45
On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, when a virtual server is configured with HTTP explicit proxy and has an attached HTTP_PROXY_REQUEST iRule, POST requests sent to the virtual server cause an xdata memory le...
CVE-2020-5887
- EPSS 1.8%
- Veröffentlicht 30.04.2020 21:15:17
- Zuletzt bearbeitet 21.11.2024 05:34:46
On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for remote attackers to access local daemons and bypass port lockdown settings.
CVE-2020-5857
- EPSS 1.04%
- Veröffentlicht 27.03.2020 15:15:12
- Zuletzt bearbeitet 21.11.2024 05:34:42
On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, undisclosed HTTP behavior may lead to a denial of service.
CVE-2020-5858
- EPSS 0.45%
- Veröffentlicht 27.03.2020 15:15:12
- Zuletzt bearbeitet 21.11.2024 05:34:42
On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, users with non-administrator roles (for example, Guest or Resource Administrator) with tmsh shell access c...
CVE-2013-3587
- EPSS 6.05%
- Veröffentlicht 21.02.2020 18:15:11
- Zuletzt bearbeitet 21.11.2024 01:53:56
The HTTPS protocol, as used in unspecified web applications, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which makes it easier for man-in-the-middle attackers to obtain plaintext secret values by obser...
CVE-2020-5854
- EPSS 0.81%
- Veröffentlicht 06.02.2020 16:15:12
- Zuletzt bearbeitet 21.11.2024 05:34:42
On BIG-IP 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.0-11.6.5.1, the tmm crashes under certain circumstances when using the connector profile if a specific sequence of connections are made.
CVE-2020-5852
- EPSS 1.2%
- Veröffentlicht 14.01.2020 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:34:41
Undisclosed traffic patterns received may cause a disruption of service to the Traffic Management Microkernel (TMM). This vulnerability affects TMM through a virtual server configured with a FastL4 profile. Traffic processing is disrupted while TMM r...
CVE-2020-5851
- EPSS 0.33%
- Veröffentlicht 14.01.2020 16:15:11
- Zuletzt bearbeitet 21.11.2024 05:34:41
On impacted versions and platforms the Trusted Platform Module (TPM) system integrity check cannot detect modifications to specific system components. This issue only impacts specific engineering hotfixes and platforms. NOTE: This vulnerability does ...
CVE-2014-5209
- EPSS 2.47%
- Veröffentlicht 08.01.2020 01:15:09
- Zuletzt bearbeitet 21.11.2024 02:11:37
An Information Disclosure vulnerability exists in NTP 4.2.7p25 private (mode 6/7) messages via a GET_RESTRICT control message, which could let a malicious user obtain sensitive information.
CVE-2019-19151
- EPSS 0.3%
- Veröffentlicht 23.12.2019 19:15:11
- Zuletzt bearbeitet 21.11.2024 04:34:15
On BIG-IP versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IQ versions 7.0.0, 6.0.0-6.1.0, and 5.0.0-5.4.0, iWorkflow version 2.3.0, and Enterprise Manager version 3.1.1, authenticated users granted TM...