F5

Big-iq Centralized Management

76 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2020-5860

  • EPSS 0.26%
  • Published 27.03.2020 15:15:12
  • Last modified 21.11.2024 05:34:43

On BIG-IP 15.0.0-15.1.0.2, 14.1.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5.1, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, in a High Availability (HA) network failover in Device Service Cluster (DSC), the failover service does ...

7.8

CVE-2020-5858

  • EPSS 0.22%
  • Published 27.03.2020 15:15:12
  • Last modified 21.11.2024 05:34:42

On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, users with non-administrator roles (for example, Guest or Resource Administrator) with tmsh shell access c...

5.9

CVE-2020-5854

  • EPSS 0.89%
  • Published 06.02.2020 16:15:12
  • Last modified 21.11.2024 05:34:42

On BIG-IP 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.0-11.6.5.1, the tmm crashes under certain circumstances when using the connector profile if a specific sequence of connections are made.

5.3

CVE-2014-5209

  • EPSS 0.53%
  • Published 08.01.2020 01:15:09
  • Last modified 21.11.2024 02:11:37

An Information Disclosure vulnerability exists in NTP 4.2.7p25 private (mode 6/7) messages via a GET_RESTRICT control message, which could let a malicious user obtain sensitive information.

5.5

CVE-2019-19151

  • EPSS 0.18%
  • Published 23.12.2019 19:15:11
  • Last modified 21.11.2024 04:34:15

On BIG-IP versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IQ versions 7.0.0, 6.0.0-6.1.0, and 5.0.0-5.4.0, iWorkflow version 2.3.0, and Enterprise Manager version 3.1.1, authenticated users granted TM...

4.3

CVE-2019-6688

  • EPSS 0.19%
  • Published 23.12.2019 18:15:11
  • Last modified 21.11.2024 04:46:57

On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5 and BIG-IQ versions 6.0.0-6.1.0 and 5.2.0-5.4.0, a user is able to obtain the secret that was being used to encrypt a BIG-IP UCS bac...

9.4

CVE-2019-6665

  • EPSS 0.84%
  • Published 27.11.2019 22:15:11
  • Last modified 21.11.2024 04:46:54

On BIG-IP ASM 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, BIG-IQ 6.0.0 and 5.2.0-5.4.0, iWorkflow 2.3.0, and Enterprise Manager 3.1.1, an attacker with access to the device communication between the BIG-IP ASM Central Policy Bui...

5.5

CVE-2019-6663

  • EPSS 0.44%
  • Published 15.11.2019 21:15:11
  • Last modified 21.11.2024 04:46:54

The BIG-IP 15.0.0-15.0.1, 14.0.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.1-11.6.5.1, BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, iWorkflow 2.3.0, and Enterprise Manager 3.1.1 configuration utility is vulnerable to Anti DNS Pinning (DNS Reb...

6.5

CVE-2018-12207

  • EPSS 0.26%
  • Published 14.11.2019 20:15:11
  • Last modified 21.11.2024 03:44:45

Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.

5.9

CVE-2019-6471

  • EPSS 1.64%
  • Published 09.10.2019 16:15:17
  • Last modified 21.11.2024 04:46:30

A race condition which may occur when discarding malformed packets can result in BIND exiting due to a REQUIRE assertion failure in dispatch.c. Versions affected: BIND 9.11.0 -> 9.11.7, 9.12.0 -> 9.12.4-P1, 9.14.0 -> 9.14.2. Also all releases of the ...