CVE-2025-36525
- EPSS 0.07%
- Published 07.05.2025 22:15:19
- Last modified 29.09.2025 21:30:43
When a BIG-IP APM virtual server is configured to use a PingAccess profile, undisclosed requests can cause TMM to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CVE-2025-23415
- EPSS 0.04%
- Published 05.02.2025 18:15:32
- Last modified 05.02.2025 18:15:32
An insufficient verification of data authenticity vulnerability exists in BIG-IP APM Access Policy endpoint inspection that may allow an attacker to bypass endpoint inspection checks for VPN connection initiated thru BIG-IP APM browser network access...
CVE-2017-6166
- EPSS 1.2%
- Published 22.11.2017 16:29:00
- Last modified 20.04.2025 01:37:25
In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing fragmented packets. This vulnerability affects TMM throug...
CVE-2017-6168
- EPSS 68.11%
- Published 17.11.2017 19:29:00
- Last modified 20.04.2025 01:37:25
On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attac...