F5

Big-ip Application Visibility And Reporting

102 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.23%
  • Veröffentlicht 13.05.2026 14:12:27
  • Zuletzt bearbeitet 29.06.2026 14:16:31

When configured, IP-based access restrictions for httpd do not cover all endpoints, which may allow connections from blocked addresses.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

  • EPSS 0.29%
  • Veröffentlicht 13.05.2026 14:12:27
  • Zuletzt bearbeitet 24.06.2026 14:52:09

Sensitive information disclosure vulnerability exists in the undisclosed iControl REST endpoint and TMOS Shell (tmsh) command which may allow an authenticated attacker with resource administrator role privileges to view sensitive information.  Note: ...

  • EPSS 0.1%
  • Veröffentlicht 13.05.2026 14:12:26
  • Zuletzt bearbeitet 24.06.2026 14:51:25

A cross-site request forgery (CSRF) vulnerability exists in the dashboard of the BIG-IP Configuration utility.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Medienbericht
  • EPSS 0.15%
  • Veröffentlicht 04.02.2026 15:02:05
  • Zuletzt bearbeitet 13.02.2026 21:44:33

A vulnerability exists in an undisclosed BIG-IP Configuration utility page that may allow an attacker to spoof error messages.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

  • EPSS 0.32%
  • Veröffentlicht 15.10.2025 15:19:52
  • Zuletzt bearbeitet 21.10.2025 12:12:24

When using a multi-bladed platform with more than one blade, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

  • EPSS 0.34%
  • Veröffentlicht 15.10.2025 15:19:46
  • Zuletzt bearbeitet 21.10.2025 19:17:54

When IPsec is configured on the BIG-IP system, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

  • EPSS 1.09%
  • Veröffentlicht 15.10.2025 13:55:55
  • Zuletzt bearbeitet 27.01.2026 13:30:32

A directory traversal vulnerability exists in TMUI that allows a highly privileged authenticated attacker to access files which are not limited to the intended files.  Note: Software versions which have reached End of Technical Support (EoTS) are not...

  • EPSS 0.34%
  • Veröffentlicht 15.10.2025 13:55:55
  • Zuletzt bearbeitet 21.10.2025 19:35:20

A validation vulnerability exists in an undisclosed URL in the Configuration utility.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

  • EPSS 0.36%
  • Veröffentlicht 15.10.2025 13:55:54
  • Zuletzt bearbeitet 04.02.2026 17:48:00

A vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) command that may allow an authenticated attacker with at least resource administrator role to execute arbitrary system commands with higher privileges.  A successful ...

  • EPSS 0.36%
  • Veröffentlicht 15.10.2025 13:55:53
  • Zuletzt bearbeitet 04.02.2026 17:48:10

A vulnerability exists in the iHealth command that may allow an authenticated attacker with at least a resource administrator role to bypass tmsh restrictions and gain access to a bash shell.  For BIG-IP systems running in Appliance mode, a successfu...