Known vulnerabilities in F5 Networks BIG-IQ Centralized Management

Vendor: F5 Networks

Website: https://f5.com/

Total Security Bulletins: 107

Security bulletins (107)

Secuity bulletin	Severity	Status	Published
SB2025063005: Privilege escalation in BIG-IQ Centralized Management Linux kernel	Low	Not patched	30.06.2025
SB20250227227: Denial of service in F5 BIG-IQ Centralized Management zlib library	Low	Not patched	27.02.2025
SB20250227224: Denial of service in F5 BIG-IQ Centralized Management zlib library	Low	Not patched	27.02.2025
SB20250227220: Buffer overflow in F5 BIG-IQ Centralized Management MiniZip component	Medium	Not patched	27.02.2025
SB20250227203: Hertzbleed vulnerability in F5 BIG-IQ Centralized Management on Intel processors	Medium	Not patched	27.02.2025
SB20250227199: Hertzbleed vulnerability in F5 BIG-IQ Centralized Management on AMD processors	Medium	Not patched	27.02.2025
SB2025012081: Denial of service in F5 BIG-IQ Centralized Management libssh2 component	Medium	Not patched	20.01.2025
SB2025010303: Information disclosure in BIG-IQ Centralized Management libcurl	Low	Not patched	03.01.2025
SB2024121653: Multiple vulnerabilities in BIG-IQ Centralized Management openssl component	Medium	Not patched	16.12.2024
SB2024112806: Multiple vulnerabilities in F5 BIG-IQ Centralized Management libssh2 component	Medium	Not patched	28.11.2024
SB2024111282: TCP spoofing attack in F5 BIG-IQ Centralized Management Linux kernel	Medium	Not patched	12.11.2024
SB2024110836: OS command injection in F5 BIG-IQ Centralized Management OpenSSH component	Medium	Not patched Public exploit	08.11.2024
SB2024102830: Denial of service in F5 BIG-IQ Centralized Management Python	Low	Not patched	28.10.2024
SB2024102826: Multiple vulnerabilities in F5 BIG-IQ Centralized Management webUI and tmsh utility	Low	Not patched	28.10.2024
SB20241016110: XSS in F5 BIG-IQ Centralized Management	Low	Patched	16.10.2024
SB2024100344: Local denial of service in F5 BIG-IQ Centralized Management Perl component	Low	Not patched	03.10.2024
SB2024092449: Symbolic link following in F5 BIG-IQ Centralized Management webUI and tmsh utilities (libarchive)	Low	Not patched	24.09.2024
SB2024091031: Information disclosure in F5 BIG-IQ Centralized Management urllib3 module	Low	Not patched	10.09.2024
SB2024090971: Two libarchive vulnerabilities in F5 BIG-IQ Centralized Management	Low	Not patched	09.09.2024
SB2023102726: Authentication bypass in BIG-IP Configuration utility	High	Patched Exploited	27.10.2023
SB2023080285: Denial of service in BIG-IP and BIG-IQ iControl SOAP daemon	Medium	Patched	02.08.2023
SB2023072745: F5 BIG-IP and BIG-IQ Centralized Management update for OpenJDK/Java	Low	Patched	27.07.2023
SB2023062652: Denial of service in BIG-IP and BIG-IQ Centralized Management iControl REST	Low	Patched	26.06.2023
SB2023062649: F5 BIG-IQ Centralized Management update for Apache HTTP Server	Medium	Patched	26.06.2023
SB2023062644: F5 BIG-IQ Centralized Management update for OpenSSL	Medium	Patched	26.06.2023
SB2023060203: F5 BIG-IP and BIG-IQ Centralized Management update for Grub2	Medium	Patched	02.06.2023
SB2023052638: F5 BIG-IP and BIG-IQ Centralized Management update for OpenJDK	Low	Patched	26.05.2023
SB2023020665: Information disclosure in BIG-IP iControl REST and tmsh dig command	Low	Patched	06.02.2023
SB2022121203: BIG-IQ Centralized Management update for open-vm-tools	Low	Patched	12.12.2022
SB2022120714: F5 BIG-IQ Centralized Management update for Java	Low	Patched	07.12.2022
SB2022120712: F5 BIG-IQ Centralized Management update for Java	Medium	Patched	07.12.2022
SB2022110279: F5 BIG-IP and BIG-IQ Centralized Management update for libexpat	High	Patched	02.11.2022
SB2022100656: Buffer overflow in BIG-IQ Centralized Management BaseOS component	High	Patched	06.10.2022
SB2022082937: Denial of service in BIG-IQ Centralized Management iControl REST framework	Medium	Patched	29.08.2022
SB2022080539: Denial of service in F5 BIG-IP and BIG-IQBIG-IQ Centralized Management	Low	Patched	05.08.2022
SB2022080537: Denial of service in F5 BIG-IP and BIG-IQ Centralized Management	Medium	Patched	05.08.2022
SB2022080411: Insufficient session expiration in BIG-IP iControl REST	Medium	Patched	04.08.2022
SB2022071121: Privilege escalation in BIG-IQ Centralized Management (Linux kernel component)	Low	Not patched Exploited	11.07.2022
SB2022071116: Security restrictions bypass in F5 BIG-IQ Centralized Management (Linux kernel component)	Low	Not patched	11.07.2022

Showing elements 1 - 40 out of 107