Known vulnerabilities in F5 Networks BIG-IP FPS

Vendor: F5 Networks

Website: https://f5.com/

Total Security Bulletins: 80

Security bulletins (80)

Secuity bulletin	Severity	Status	Published
SB2021082512: Denial of service in F5 BIG-IP products	Low	Patched	25.08.2021
SB2021042917: Denial of service in BIG-IP TMM	Medium	Patched	29.04.2021
SB2021031607: Remote authenticated command execution in BIG-IP TMUI	High	Patched	16.03.2021
SB2021031606: Remote authenticated command execution in BIG-IP Appliance mode TMUI	High	Patched	16.03.2021
SB2021031604: Denial of service in BIG-IP MPTCP	Medium	Patched	16.03.2021
SB2021031603: Denial of service in BIG-IP TMM	Medium	Patched	16.03.2021
SB2021031202: Denial of service in glibc implementation in F5 BIG-IP and F5OS	Low	Not patched	12.03.2021
SB2021031201: Denial of service in Linux kernel ext3/ext4 file system in F5 BIG-IP	Low	Not patched	12.03.2021
SB2021031122: Denial of service in BIG-IP glibc implementation	Medium	Not patched	11.03.2021
SB2021031121: Cross-site scripting in BIG-IP iControl REST API	Medium	Patched	11.03.2021
SB2021031120: Buffer overflow in F5 BIG-IP TMM	High	Patched Exploited	11.03.2021
SB2021031117: SYN flood denial of service in BIG-IP SNAT implementation	Medium	Patched	11.03.2021
SB2021031116: Denial of service in BIG-IP MPTCP	Medium	Patched	11.03.2021
SB2021031104: Denial of srevice in HTTP/2 implementation in F5 BIG-IP	Medium	Patched	11.03.2021
SB2021031102: Remote code execution in iControl REST API in multiple F5 BIG-IP products	High	Patched Exploited	11.03.2021
SB2021030902: System tracking vulnerability in Linux kernel in F5 BIP-IP products	Medium	Not patched	09.03.2021
SB2021030501: Remote code execution in BIND in multiple F5 BIG-IP products	High	Not patched	05.03.2021
SB2021022421: Denial of service in Node.js component in multiple F5 BIG-IP products	Medium	Not patched	24.02.2021
SB2021021905: Denial of service in curl implementation for Command Line Interface, EAV Monitors, iRules components in F5 BIG-IP products	Low	Not patched	19.02.2021
SB2021021903: Information disclosure in curl implementation within Command Line Interface, EAV Monitors and iRules components in F5 BIG-IP products	Medium	Not patched	19.02.2021
SB2021021902: Improper certificate revocation in curl implementation within Command Line Interface, EAV Monitors and iRules components in F5 BIG-IP products	Medium	Not patched	19.02.2021
SB2021021113: Cross-site scripting in iControl REST in F5 BIG-IP	Low	Patched	11.02.2021
SB2021021111: Race condition in iControl REST component in F5 BIG-IP	Medium	Patched	11.02.2021
SB2021021108: Multiple vulnerabilities in BIG-IP TMM	Medium	Patched	11.02.2021
SB2021021107: Buffer overflow in iRules LX component in F5 BIG-IP products	Medium	Patched	11.02.2021
SB2021021106: MitM-attack in BIG-IP SSL/TLS implementation	Low	Patched	11.02.2021
SB2021021105: Cross-site scripting in BIG-IP FPS	Medium	Patched	11.02.2021
SB2021020901: Local denial of service in Linux kernel in F5 BIG-IP products	Low	Not patched	09.02.2021
SB2021011411: OpenSSL vulnerability in multiple F5 products	Medium	Not patched	14.01.2021
SB2020122907: Privilege escalation in procps-ng component in F5 BIG-IP	Low	Not patched	29.12.2020
SB2020122813: Multiple vulnerabilities in procps-ng component in F5 BIG-IP products	High	Not patched	28.12.2020
SB2020122413: Information disclosure in Linux kernel if F5 BIG-IP products	Medium	Not patched	24.12.2020
SB2020122411: Denial of service in Linux kernel in F5 BIG-IP products	Low	Not patched	24.12.2020
SB2020122316: Buffer overflow in cURL component in F5 Networks products	Medium	Patched	23.12.2020
SB2020121734: Information disclosure in F5 BIG-IP iAppsLX	Low	Patched	17.12.2020
SB2020121731: Denial of service in BIG-IP Configuration utility	Medium	Patched	17.12.2020
SB2020121723: Cross-site scripting in F5 Networks BIG-IP	Low	Patched	17.12.2020
SB2020121720: Raccoon attack against TLS implementation in F5 BIG-IP	Medium	Not patched	17.12.2020
SB2020121719: XSS in F5 Networks BIG-IP	Medium	Patched	17.12.2020

Showing elements 1 - 40 out of 80