F5

Big-ip Advanced Firewall Manager

470 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-24775

  • EPSS 0.36%
  • Published 14.02.2024 17:15:14
  • Last modified 23.01.2025 19:53:31

When a virtual server is enabled with VLAN group and SNAT listener is configured, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.  Note: Software versions which have reached End of Technical Support (EoTS) are not...

7.5

CVE-2024-23314

  • EPSS 0.27%
  • Published 14.02.2024 17:15:13
  • Last modified 23.01.2025 19:52:38

When HTTP/2 is configured on BIG-IP or BIG-IP Next SPK systems, undisclosed responses can cause the Traffic Management Microkernel (TMM) to terminate.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

6.7

CVE-2024-21782

  • EPSS 0.07%
  • Published 14.02.2024 17:15:12
  • Last modified 23.01.2025 19:47:50

BIG-IP or BIG-IQ Resource Administrators and Certificate Managers who have access to the secure copy (scp) utility but do not have access to Advanced shell (bash) can execute arbitrary commands with a specially crafted command string. This vulnerabil...

8.7

CVE-2024-22093

  • EPSS 0.32%
  • Published 14.02.2024 17:15:12
  • Last modified 05.09.2025 15:43:00

When running in appliance mode, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint on multi-bladed systems. A successful exploit can allow the attacker to cross a security boundary.  Note: Software...

7.2

CVE-2024-22389

  • EPSS 0.24%
  • Published 14.02.2024 17:15:12
  • Last modified 05.09.2025 15:49:32

When BIG-IP is deployed in high availability (HA) and an iControl REST API token is updated, the change does not sync to the peer device. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

7.5

CVE-2024-21763

  • EPSS 0.36%
  • Published 14.02.2024 17:15:11
  • Last modified 12.12.2024 19:12:18

When BIG-IP AFM Device DoS or DoS profile is configured with NXDOMAIN attack vector and bad actor detection, undisclosed queries can cause the Traffic Management Microkernel (TMM) to terminate.  NOTE: Software versions which have reached End of Tech...

7.5

CVE-2024-21771

  • EPSS 0.27%
  • Published 14.02.2024 17:15:11
  • Last modified 23.01.2025 19:42:31

For unspecified traffic patterns, BIG-IP AFM IPS engine may spend an excessive amount of time matching the traffic against signatures, resulting in Traffic Management Microkernel (TMM) restarting and traffic disruption.  Note: Software versions whic...

9.8

CVE-2023-46747

Warning Exploit
  • EPSS 94.44%
  • Published 26.10.2023 21:15:08
  • Last modified 02.04.2025 20:32:09

Undisclosed requests may bypass configuration utility authentication, allowing an attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands.  Note: Software versions wh...

8.8

CVE-2023-46748

Warning Exploit
  • EPSS 3.17%
  • Published 26.10.2023 21:15:08
  • Last modified 27.01.2025 21:31:47

An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility which may allow an authenticated attacker with network access to the Configuration utility through the BIG-IP management port and/or self IP addresses to execut...

7.5

CVE-2023-44487

Warning Media report Exploit
  • EPSS 94.44%
  • Published 10.10.2023 14:15:10
  • Last modified 11.06.2025 17:29:54

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.