Known Vulnerabilities for Big-ip Edge Gateway by F5
Listed below are 10 of the newest known vulnerabilities associated with "Big-ip Edge Gateway" by "F5".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-45219 json | Exposure of Sensitive Information vulnerability exist in an undisclosed BIG-IP TMOS shell (tmsh) command which may allow an ... | 4.4 - MEDIUM | 2023-10-10 | 2023-10-18 |
| CVE-2023-43611 json | The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating privileges during the installation pr... | 7.8 - HIGH | 2023-10-10 | 2023-10-18 |
| CVE-2023-42768 json | When a non-admin user has been assigned an administrator role via an iControl REST PUT request and later the user's role is ... | 7.2 - HIGH | 2023-10-10 | 2023-10-17 |
| CVE-2023-41964 json | The BIG-IP and BIG-IQ systems do not encrypt some sensitive information written to Database (DB) variables. Note: Softwar... | 6.5 - MEDIUM | 2023-10-10 | 2023-10-17 |
| CVE-2023-41085 json | When IPSec is configured on a Virtual Server, undisclosed traffic can cause TMM to terminate. Note: Software versions whi... | 7.5 - HIGH | 2023-10-10 | 2023-10-17 |
| CVE-2023-40542 json | When TCP Verified Accept is enabled on a TCP profile that is configured on a Virtual Server, undisclosed requests can cause ... | 7.5 - HIGH | 2023-10-10 | 2023-10-17 |
| CVE-2023-40534 json | When a client-side HTTP/2 profile and the HTTP MRF Router option are enabled for a virtual server, and an iRule using the HTT... | 7.5 - HIGH | 2023-10-10 | 2023-10-19 |
| CVE-2023-38423 json | A cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an ... | 5.4 - MEDIUM | 2023-08-02 | 2023-08-07 |
| CVE-2023-38419 json | An authenticated attacker with guest privileges or higher can cause the iControl SOAP process to terminate by sending undiscl... | 4.3 - MEDIUM | 2023-08-02 | 2023-08-07 |
| CVE-2023-38138 json | A reflected cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility which... | 6.1 - MEDIUM | 2023-08-02 | 2023-08-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | F5 | Big-ip Edge Gateway | 16.0.1 | |||
| Application | F5 | Big-ip Edge Gateway | 16.0.0 | |||
| Application | F5 | Big-ip Edge Gateway | 15.1.1 | |||
| Application | F5 | Big-ip Edge Gateway | 15.1.0.5 | |||
| Application | F5 | Big-ip Edge Gateway | 15.1.0.2 | |||
| Application | F5 | Big-ip Edge Gateway | 15.1.0.1 | |||
| Application | F5 | Big-ip Edge Gateway | 15.1.0 | |||
| Application | F5 | Big-ip Edge Gateway | 15.0.1.4 | |||
| Application | F5 | Big-ip Edge Gateway | 15.0.1.3 | |||
| Application | F5 | Big-ip Edge Gateway | 15.0.1.2 | |||
| Application | F5 | Big-ip Edge Gateway | 15.0.1.1 | |||
| Application | F5 | Big-ip Edge Gateway | 15.0.1 | |||
| Application | F5 | Big-ip Edge Gateway | 15.0.0 | |||
| Application | F5 | Big-ip Edge Gateway | 14.1.2.8 | |||
| Application | F5 | Big-ip Edge Gateway | 14.1.2.5 | |||
| Application | F5 | Big-ip Edge Gateway | 14.1.2.4 | |||
| Application | F5 | Big-ip Edge Gateway | 14.1.2.3 | |||
| Application | F5 | Big-ip Edge Gateway | 14.1.2.2 | |||
| Application | F5 | Big-ip Edge Gateway | 14.1.2.1.0.83.4 | |||
| Application | F5 | Big-ip Edge Gateway | 14.1.2.1 |