Known Vulnerabilities for products from F5

Listed below are 20 of the newest known vulnerabilities associated with the vendor "F5".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Additional devices specifications by F5 can be found at device.report : F5

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-25139 njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njs_await_fulfilled. 9.8 - CRITICAL 2022-02-14 2022-03-24
CVE-2022-23032 In all versions before 7.2.1.4, when proxy settings are configured in the network access resource of a BIG-IP APM system, con... 5.3 - MEDIUM 2022-01-25 2022-02-01
CVE-2022-23031 On BIG-IP FPS, ASM, and Advanced WAF versions 16.1.x before 16.1.1, 15.1.x before 15.1.4, and 14.1.x before 14.1.4.4, an XML ... 4.9 - MEDIUM 2022-01-25 2022-02-01
CVE-2022-23030 On version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all versions of 13.1.x, when the BIG-IP ... 5.3 - MEDIUM 2022-01-25 2022-02-01
CVE-2022-23029 On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x, 12.1.x, and... 5.3 - MEDIUM 2022-01-25 2022-02-01
CVE-2022-23028 On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x, when glob... 5.3 - MEDIUM 2022-01-25 2022-02-01
CVE-2022-23027 On BIG-IP versions 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, 13.1.x beginning in 13.1.3.6, 12.1.5.3-12.1.6, and 11.6.5.2,... 5.3 - MEDIUM 2022-01-25 2022-02-01
CVE-2022-23026 On BIG-IP ASM & Advanced WAF version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all versions o... 4.3 - MEDIUM 2022-01-25 2022-02-01
CVE-2022-23025 On BIG-IP version 16.1.x before 16.1.1, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all versions of 13.1.x, when a SIP ... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23024 On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.2, and all versions of 13.1.x, when th... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23023 On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x and 12.1.x... 6.5 - MEDIUM 2022-01-25 2022-02-01
CVE-2022-23022 On BIG-IP version 16.1.x before 16.1.2, when an HTTP profile is configured on a virtual server, undisclosed requests can caus... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23021 On BIG-IP version 16.1.x before 16.1.2, when any of the following configurations are configured on a virtual server, undisclo... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23020 On BIG-IP version 16.1.x before 16.1.2, when the 'Respond on Error' setting is enabled on the Request Logging profile and con... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23019 On BIG-IP version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x and 12.1.x... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23018 On BIG-IP AFM version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and 13.1.x beginning in 13.1.3.4,... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23017 On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all versions of 13.1.x, when a virt... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23016 On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP SSL Forward Proxy with TLS 1.3 is configured on a vi... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23015 On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, and 14.1.2.6-14.1.4.4, when a Client SSL profile is configured... 7.5 - HIGH 2022-01-25 2022-02-01
CVE-2022-23014 On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP APM portal access is configured on a virtual server,... 6.5 - MEDIUM 2022-01-25 2022-02-01
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from F5

Type Vendor Product Version
ApplicationF53 Dns-
ApplicationF5Access Policy Manager Clients7.1.5
HardwareF5Arx-
ApplicationF5Arx Data Manager3.0.0
Operating
System		F5Arx Firmware6.0.0
HardwareF5Big-ip-
HardwareF5Big-ip 1000-
HardwareF5Big-ip 11050-
HardwareF5Big-ip 1500-
HardwareF5Big-ip 1600-
HardwareF5Big-ip 2000c112
HardwareF5Big-ip 2000s-
HardwareF5Big-ip 2200s-
HardwareF5Big-ip 2400-
HardwareF5Big-ip 3400-
HardwareF5Big-ip 3410-
HardwareF5Big-ip 3600-
HardwareF5Big-ip 3900-
HardwareF5Big-ip 4000c113
HardwareF5Big-ip 4000s-
Results limited to 20 most recent known configurations

Popular searches for "F5"

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].