Known vulnerabilities in F5 Networks BIG-IP ASM 16.0.1.1

Known vulnerabilities in F5 Networks BIG-IP ASM 16.0.1.1

Vendor: F5 Networks

Website: https://f5.com/

Total Security Bulletins: 14

Security bulletins (14)

Secuity bulletin	Severity	Status	Published
SB2022011950: Arbitrary file upload in BIG-IP ASM and Advanced WAF REST API	Medium	Patched	19.01.2022
SB2022011948: XXE in IG-IP ASM and Advanced WAF TMUI	Low	Patched	19.01.2022
SB2021082512: Denial of service in F5 BIG-IP products	Low	Patched	25.08.2021
SB2021031202: Denial of service in glibc implementation in F5 BIG-IP and F5OS	Low	Not patched	12.03.2021
SB2021031201: Denial of service in Linux kernel ext3/ext4 file system in F5 BIG-IP	Low	Not patched	12.03.2021
SB2021030902: System tracking vulnerability in Linux kernel in F5 BIP-IP products	Medium	Not patched	09.03.2021
SB2021030501: Remote code execution in BIND in multiple F5 BIG-IP products	High	Not patched	05.03.2021
SB2021022421: Denial of service in Node.js component in multiple F5 BIG-IP products	Medium	Not patched	24.02.2021
SB2021021905: Denial of service in curl implementation for Command Line Interface, EAV Monitors, iRules components in F5 BIG-IP products	Low	Not patched	19.02.2021
SB2021021903: Information disclosure in curl implementation within Command Line Interface, EAV Monitors and iRules components in F5 BIG-IP products	Medium	Not patched	19.02.2021
SB2021021902: Improper certificate revocation in curl implementation within Command Line Interface, EAV Monitors and iRules components in F5 BIG-IP products	Medium	Not patched	19.02.2021
SB2021020901: Local denial of service in Linux kernel in F5 BIG-IP products	Low	Not patched	09.02.2021
SB2021011411: OpenSSL vulnerability in multiple F5 products	Medium	Not patched	14.01.2021
SB2020122316: Buffer overflow in cURL component in F5 Networks products	Medium	Patched	23.12.2020