F5

Big-ip Advanced Firewall Manager

513 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2018-15323

  • EPSS 0.65%
  • Veröffentlicht 31.10.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:33

On BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, in certain circumstances, when processing traffic through a Virtual Server with an associated MQTT profile, the TMM process may produce a core file and take the configured HA action.

4.3

CVE-2018-15325

  • EPSS 0.28%
  • Veröffentlicht 31.10.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:33

In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, iControl and TMSH usage by authenticated users may leak a small amount of memory when executing commands

7.2

CVE-2018-15327

  • EPSS 0.28%
  • Veröffentlicht 31.10.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:34

In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1 or Enterprise Manager 3.1.1, when authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allo...

6.1

CVE-2018-15312

  • EPSS 0.26%
  • Veröffentlicht 19.10.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:32

On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, a reflected Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an authenticated user to execute JavaScript for the currently logged-...

6.1

CVE-2018-15313

  • EPSS 0.34%
  • Veröffentlicht 19.10.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:32

On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page.

6.1

CVE-2018-15314

  • EPSS 0.34%
  • Veröffentlicht 19.10.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:32

On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page.

6.1

CVE-2018-15315

  • EPSS 0.26%
  • Veröffentlicht 19.10.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:32

On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a reflected Cross Site Scripting (XSS) vulnerability in an undisclosed Configuration Utility page.

5.9

CVE-2018-15311

  • EPSS 3.53%
  • Veröffentlicht 10.10.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:31

When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.5.1-11.5.6 is processing specially crafted TCP traffic with the Large Receive Offload (LRO) feature enabled, TMM may crash, leading to a failover event. This vulnerability is not...

7.5

CVE-2016-7475

  • EPSS 0.65%
  • Veröffentlicht 08.10.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 02:58:04

Under some circumstances on BIG-IP 12.0.0-12.1.0, 11.6.0-11.6.1, or 11.4.0-11.5.4 HF1, the Traffic Management Microkernel (TMM) may not properly clean-up pool member network connections when using SPDY or HTTP/2 virtual server profiles.

7.8

CVE-2018-14634

Warnung Exploit
  • EPSS 11.53%
  • Veröffentlicht 25.09.2018 21:29:00
  • Zuletzt bearbeitet 27.01.2026 15:55:15

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6...