Known vulnerabilities in F5 Networks BIG-IQ Centralized Management 7.0.0

Vendor: F5 Networks

Website: https://f5.com/

Total Security Bulletins: 40

Security bulletins (40)

Secuity bulletin	Severity	Status	Published
SB2023062652: Denial of service in BIG-IP and BIG-IQ Centralized Management iControl REST	Low	Patched	26.06.2023
SB2023062649: F5 BIG-IQ Centralized Management update for Apache HTTP Server	Medium	Patched	26.06.2023
SB2022080411: Insufficient session expiration in BIG-IP iControl REST	Medium	Patched	04.08.2022
SB2022071121: Privilege escalation in BIG-IQ Centralized Management (Linux kernel component)	Low	Not patched Exploited	11.07.2022
SB2022071116: Security restrictions bypass in F5 BIG-IQ Centralized Management (Linux kernel component)	Low	Not patched	11.07.2022
SB2022050516: Denial of service in BIG-IP TMM IPv6	Medium	Patched	05.05.2022
SB2022041924: HTTP request smuggling in BIG-IQ Centralized Management Restjavad	Low	Patched	19.04.2022
SB2022040633: Multiple vulnerabilities in F5 BIG-IQ Centralized Management (restjavad)	Low	Not patched	06.04.2022
SB2022040402: Memory leak in BIG-IQ Centralized Management Linux kernel	Low	Not patched	04.04.2022
SB2022032831: Information disclosure in BIG-IQ Centralized Management Restjavad	Low	Not patched	28.03.2022
SB2022020721: Denial of service in BIG-IQ Centralized Management (Expat library)	Medium	Not patched	07.02.2022
SB2022020717: Integer overflow in BIG-IQ Centralized Management (Perl component)	High	Not patched	07.02.2022
SB2022012007: Denial of service in BIG-IQ Centralized Management iControl REST API	Low	Not patched	20.01.2022
SB2021100304: Information disclosure in OpenSSL component in BIG-IQ Centralized Management	Medium	Not patched	03.10.2021
SB2021100302: HTTP request smuggling within the Netty component in BIG-IQ Centralized Management	Medium	Not patched	03.10.2021
SB2021072629: AngularJS XSS in BIG-IQ Centralized Management	Low	Not patched	26.07.2021
SB2021062302: Improper input validation in Python Flask module in BIG-IQ Centralized Management and F5OS	Medium	Not patched	23.06.2021
SB2021060209: Command Injection in BIG-IQ Centralized Management	Low	Patched	02.06.2021
SB2021060206: Infinite loop in python tarfile library in F5 BIG-IP products	Medium	Not patched	02.06.2021
SB2021051901: Denial of service in F5 BIG-IP BIND	Low	Not patched	19.05.2021
SB2021042001: Denial of service in iApps component in F5 BIG-IP products	Medium	Not patched	20.04.2021
SB2021031411: Denial of service in glibc implementation in F5 BIG-IP and F5OS	Medium	Not patched	14.03.2021
SB2021031118: Missing authentication in BIG-IQ HA ElasticSearch	Medium	Patched	11.03.2021
SB2021031115: Cross-site scripting in F5 BIG-IQ Centralized Management	Medium	Patched	11.03.2021
SB2021031114: Denial of service in F5 BIG-IQ DCD	Medium	Patched	11.03.2021
SB2021031105: Denial of service in BIG-IQ Centralized Management	High	Patched	11.03.2021
SB2021031103: Cleartext transmission of sensitive information in F5 BIG-IQ Centralized Management	Low	Patched	11.03.2021
SB2021021112: Race condition in iControl REST component in BIG-IQ Centralized Management	Medium	Not patched	11.02.2021
SB2020122908: Privilege escalation in procps-ng component in F5 BIG-IQ Centralized Management	Low	Not patched	29.12.2020
SB2020122814: Multiple vulnerabilities in F5 BIG-IQ Centralized Management	High	Not patched	28.12.2020
SB2020121701: XSS in BIG-IQ Centralized Management and Traffix SDC	Low	Patched	17.12.2020
SB2020120916: Denial of service in F5 BIG-IQ Centralized Management	Low	Patched	09.12.2020
SB2020120855: Security restrictions bypass in Linux kernel in F5 BIG-IQ Centralized Management	Low	Not patched	08.12.2020
SB2020120853: Race condition in Linux kernel in BIG-IQ Centralized Management	Low	Not patched	08.12.2020
SB2020060253: Authentication bypass in NTP component in F5 BIG-IQ Centralized Management and Traffix SDC	Low	Patched	02.06.2020
SB2020042430: OS Command Injection in BIG-IQ Centralized Management	High	Patched	24.04.2020
SB2020042408: Multiple vulnerabilities in F5 BIG-IQ Centralized Management	Medium	Patched	24.04.2020
SB2019120517: Intel MCE vulnerability in F5 Networks products	Low	Patched	05.12.2019
SB2019112603: DNS Rebinding in several F5 Networks products	Low	Not patched	26.11.2019

Showing elements 1 - 40 out of 60