Known vulnerabilities in F5 Networks BIG-IQ Centralized Management 7.1.0.3

Vendor: F5 Networks

Website: https://f5.com/

Total Security Bulletins: 40

Security bulletins (40)

Secuity bulletin	Severity	Status	Published
SB20250227199: Hertzbleed vulnerability in F5 BIG-IQ Centralized Management on AMD processors	Medium	Not patched	27.02.2025
SB2023062652: Denial of service in BIG-IP and BIG-IQ Centralized Management iControl REST	Low	Patched	26.06.2023
SB2023062649: F5 BIG-IQ Centralized Management update for Apache HTTP Server	Medium	Patched	26.06.2023
SB2023060203: F5 BIG-IP and BIG-IQ Centralized Management update for Grub2	Medium	Patched	02.06.2023
SB2023020665: Information disclosure in BIG-IP iControl REST and tmsh dig command	Low	Patched	06.02.2023
SB2022121203: BIG-IQ Centralized Management update for open-vm-tools	Low	Patched	12.12.2022
SB2022120714: F5 BIG-IQ Centralized Management update for Java	Low	Patched	07.12.2022
SB2022120712: F5 BIG-IQ Centralized Management update for Java	Medium	Patched	07.12.2022
SB2022100656: Buffer overflow in BIG-IQ Centralized Management BaseOS component	High	Patched	06.10.2022
SB2022082937: Denial of service in BIG-IQ Centralized Management iControl REST framework	Medium	Patched	29.08.2022
SB2022080411: Insufficient session expiration in BIG-IP iControl REST	Medium	Patched	04.08.2022
SB2022071121: Privilege escalation in BIG-IQ Centralized Management (Linux kernel component)	Low	Not patched Exploited	11.07.2022
SB2022071116: Security restrictions bypass in F5 BIG-IQ Centralized Management (Linux kernel component)	Low	Not patched	11.07.2022
SB2022041924: HTTP request smuggling in BIG-IQ Centralized Management Restjavad	Low	Patched	19.04.2022
SB2022040633: Multiple vulnerabilities in F5 BIG-IQ Centralized Management (restjavad)	Low	Not patched	06.04.2022
SB2022040402: Memory leak in BIG-IQ Centralized Management Linux kernel	Low	Not patched	04.04.2022
SB2022032831: Information disclosure in BIG-IQ Centralized Management Restjavad	Low	Not patched	28.03.2022
SB2022020721: Denial of service in BIG-IQ Centralized Management (Expat library)	Medium	Not patched	07.02.2022
SB2022020717: Integer overflow in BIG-IQ Centralized Management (Perl component)	High	Not patched	07.02.2022
SB2022012007: Denial of service in BIG-IQ Centralized Management iControl REST API	Low	Not patched	20.01.2022
SB2021100304: Information disclosure in OpenSSL component in BIG-IQ Centralized Management	Medium	Not patched	03.10.2021
SB2021100302: HTTP request smuggling within the Netty component in BIG-IQ Centralized Management	Medium	Not patched	03.10.2021
SB2021072629: AngularJS XSS in BIG-IQ Centralized Management	Low	Not patched	26.07.2021
SB2021072083: Denial of service in F5 BIG-IQ Centralized Management glibc	Medium	Not patched	20.07.2021
SB2021062302: Improper input validation in Python Flask module in BIG-IQ Centralized Management and F5OS	Medium	Not patched	23.06.2021
SB2021060206: Infinite loop in python tarfile library in F5 BIG-IP products	Medium	Not patched	02.06.2021
SB2021051901: Denial of service in F5 BIG-IP BIND	Low	Not patched	19.05.2021
SB2021042001: Denial of service in iApps component in F5 BIG-IP products	Medium	Not patched	20.04.2021
SB2021041226: Memory leak in D-Bus component in F5 BIG-IP products	Low	Not patched	12.04.2021
SB2021031411: Denial of service in glibc implementation in F5 BIG-IP and F5OS	Medium	Not patched	14.03.2021
SB2021031202: Denial of service in glibc implementation in F5 BIG-IP and F5OS	Low	Not patched	12.03.2021
SB2021031201: Denial of service in Linux kernel ext3/ext4 file system in F5 BIG-IP	Low	Not patched	12.03.2021
SB2021031118: Missing authentication in BIG-IQ HA ElasticSearch	Medium	Patched	11.03.2021
SB2021031115: Cross-site scripting in F5 BIG-IQ Centralized Management	Medium	Patched	11.03.2021
SB2021031114: Denial of service in F5 BIG-IQ DCD	Medium	Patched	11.03.2021
SB2021031105: Denial of service in BIG-IQ Centralized Management	High	Patched	11.03.2021
SB2020072882: Improper privilege management in F5 BIG-IQ Centralized Management BIG-IQ component	Low	Not patched	28.07.2020
SB2020072504: SQL injection in F5 BIG-IQ Centralized Management PostgreSQL component	Low	Not patched	25.07.2020
SB2020072503: Improper authorization in F5 BIG-IQ Centralized Management PostgreSQL component	Low	Not patched	25.07.2020

Showing elements 1 - 40 out of 43