Known Vulnerabilities for Big-ip Advanced Web Application Firewall by F5

Listed below are 10 of the newest known vulnerabilities associated with the software "Big-ip Advanced Web Application Firewall" by "F5".

These CVEs are retrieved based on exact matches on listed software and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-23029 On version 16.0.x before 16.0.1.2, insufficient permission checks may allow authenticated users with guest privileges to perf... Not Provided 2021-09-14 2021-09-14
CVE-2021-23028 On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.2, and 13.1.x before 13.1.4, when JSON conten... Not Provided 2021-09-14 2021-09-14
CVE-2021-22987 On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x befor... 9.9 - CRITICAL 2021-03-31 2021-04-05
CVE-2021-22986 On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.1.x b... 9.8 - CRITICAL 2021-03-31 2021-04-05
CVE-2021-22984 On BIG-IP Advanced WAF and ASM version 15.1.x before 15.1.0.2, 15.0.x before 15.0.1.4, 14.1.x before 14.1.2.5, 13.1.x before ... 6.1 - MEDIUM 2021-02-12 2021-02-18
CVE-2021-22981 On all versions of BIG-IP 12.1.x and 11.6.x, the original TLS protocol includes a weakness in the master secret negotiation t... 4.8 - MEDIUM 2021-02-12 2021-02-19
CVE-2021-22979 On BIG-IP version 16.0.x before 16.0.1, 15.1.x before 15.1.1, 14.1.x before 14.1.2.8, 13.1.x before 13.1.3.5, and all 12.1.x ... 6.1 - MEDIUM 2021-02-12 2021-02-19
CVE-2021-22978 On BIG-IP version 16.0.x before 16.0.1, 15.1.x before 15.1.1, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.5, and all 12.1.x ... 8.3 - HIGH 2021-02-12 2021-02-24
CVE-2021-22977 On BIG-IP version 16.0.0-16.0.1 and 14.1.2.4-14.1.3, cooperation between malicious HTTP client code and a malicious server ma... 7.5 - HIGH 2021-02-12 2021-02-18
CVE-2021-22976 On BIG-IP Advanced WAF and ASM version 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, 13.1.x before 13... 7.5 - HIGH 2021-02-12 2021-02-19

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationF5Big-ip Advanced Web Application Firewall16.0.1AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall16.0.0AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.1.2AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.1.1AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.1.0.5AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.1.0.4AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.1.0.2AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.1.0AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.0.1.4AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.0.1AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall15.0.0AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.3.1AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.2.8AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.2.7-0.0.5AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.2.7AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.2.6-0.0.2AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.2.6AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.2.5-0.0.3AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.2.5AllAllAll
ApplicationF5Big-ip Advanced Web Application Firewall14.1.2.3-0.0.5AllAllAll

Popular searches for Big-ip Advanced Web Application Firewall

BIG-IP Services

www.f5.com/products/big-ip-services

G-IP Services See how F5 G-IP application p n l delivery services and products fully support your applications, via appliances or as virtualized solutions.

f5.com/products/big-ip www.f5.com/products/big-ip www.f5.com/products/big-ip www.f5.com/products/hardware/big-ip.html f5.com/products/big-ip/application-security-manager-asm www.f5.com/products/big-ip f5.com/products/platforms/f5-ready-cloud-program f5.com/products/big-ip f5.com/products/big-ip/link-controller F5 Networks Application software Cloud computing Internet Protocol Computer security Application service provider Computer appliance Software Software deployment Application streaming Nginx Computer hardware Application lifecycle management Data center Business Computer network Solution Virtualization Mobile app User (computing)

Security

www.f5.com/products/security

Security C A ?Accelerate your deployments with self-service, on-demand cloud application services.

f5.com/products/modules/application-security-manager f5.com/products/modules/websafe f5.com/products/security/identity-and-access-management f5.com/products/websafe-and-mobilesafe www.f5.com/products/big-ip/big-ip-application-security-manager/overview f5.com/solutions/enterprise/reference-architectures/secure-web-gateway f5.com/products/modules/mobilesafe f5.com/products/security/ddos-hybrid-defender F5 Networks Application software Computer security Software as a service Data Software deployment Cloud computing Security Self-service Web application firewall Application service provider Mobile app Denial-of-service attack Nginx User (computing) Business Application lifecycle management Transport Layer Security Professional services Cyberattack

© CVE.report 2021 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report