F5

Big-ip Advanced Firewall Manager

470 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-5883

  • EPSS 0.65%
  • Published 30.04.2020 21:15:17
  • Last modified 21.11.2024 05:34:45

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, when a virtual server is configured with HTTP explicit proxy and has an attached HTTP_PROXY_REQUEST iRule, POST requests sent to the virtual server cause an xdata memory le...

9.1

CVE-2020-5884

  • EPSS 0.62%
  • Published 30.04.2020 21:15:17
  • Last modified 21.11.2024 05:34:45

On versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.4, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the default deployment mode for BIG-IP high availability (HA) pair mirroring is insecure. This is a control plane issue that is exposed only on the n...

9.1

CVE-2020-5885

  • EPSS 0.24%
  • Published 30.04.2020 21:15:17
  • Last modified 21.11.2024 05:34:45

On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1, BIG-IP systems set up for connection mirroring in a high availability (HA) pair transfer sensitive cryptographic objects over an insecure communications channel. This...

9.1

CVE-2020-5886

  • EPSS 0.24%
  • Published 30.04.2020 21:15:17
  • Last modified 21.11.2024 05:34:46

On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1, BIG-IP systems setup for connection mirroring in a High Availability (HA) pair transfers sensitive cryptographic objects over an insecure communications channel. This...

9.1

CVE-2020-5887

  • EPSS 0.37%
  • Published 30.04.2020 21:15:17
  • Last modified 21.11.2024 05:34:46

On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for remote attackers to access local daemons and bypass port lockdown settings.

7.5

CVE-2020-5891

  • EPSS 0.65%
  • Published 30.04.2020 21:15:17
  • Last modified 21.11.2024 05:34:46

On BIG-IP 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, undisclosed HTTP/2 requests can lead to a denial of service when sent to a virtual server configured with the Fallback Host setting and a server-side HTTP/2 profile.

7.2

CVE-2020-5873

  • EPSS 0.29%
  • Published 30.04.2020 21:15:16
  • Last modified 21.11.2024 05:34:44

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.1-11.6.5 and BIG-IQ 5.2.0-7.1.0, a user associated with the Resource Administrator role who has access to the secure copy (scp) utility but does not have access to Adv...

7.5

CVE-2020-5875

  • EPSS 0.65%
  • Published 30.04.2020 21:15:16
  • Last modified 21.11.2024 05:34:44

On BIG-IP 15.0.0-15.0.1 and 14.1.0-14.1.2.3, under certain conditions, the Traffic Management Microkernel (TMM) may generate a core file and restart while processing SSL traffic with an HTTP/2 full proxy.

8.1

CVE-2020-5876

  • EPSS 0.3%
  • Published 30.04.2020 21:15:16
  • Last modified 21.11.2024 05:34:44

On BIG-IP 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, a race condition exists where mcpd and other processes may make unencrypted connection attempts to a new configuration sync peer. The race condition ca...

7.5

CVE-2020-5877

  • EPSS 0.65%
  • Published 30.04.2020 21:15:16
  • Last modified 21.11.2024 05:34:45

On BIG-IP 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, malformed input to the DATAGRAM::tcp iRules command within a FLOW_INIT event may lead to a denial of service.