Known Vulnerabilities for products from F5
Listed below are 20 of the newest known vulnerabilities associated with the vendor "F5".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by F5 can be found at device.report : F5
Known Vulnerabilities
CVE | Shortened Description | Severity | Publish Date | Last Modified |
---|---|---|---|---|
CVE-2022-25139 | njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njs_await_fulfilled. | 9.8 - CRITICAL | 2022-02-14 | 2022-03-24 |
CVE-2022-23032 | In all versions before 7.2.1.4, when proxy settings are configured in the network access resource of a BIG-IP APM system, con... | 5.3 - MEDIUM | 2022-01-25 | 2022-02-01 |
CVE-2022-23031 | On BIG-IP FPS, ASM, and Advanced WAF versions 16.1.x before 16.1.1, 15.1.x before 15.1.4, and 14.1.x before 14.1.4.4, an XML ... | 4.9 - MEDIUM | 2022-01-25 | 2022-02-01 |
CVE-2022-23030 | On version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all versions of 13.1.x, when the BIG-IP ... | 5.3 - MEDIUM | 2022-01-25 | 2022-02-01 |
CVE-2022-23029 | On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x, 12.1.x, and... | 5.3 - MEDIUM | 2022-01-25 | 2022-02-01 |
CVE-2022-23028 | On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x, when glob... | 5.3 - MEDIUM | 2022-01-25 | 2022-02-01 |
CVE-2022-23027 | On BIG-IP versions 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, 13.1.x beginning in 13.1.3.6, 12.1.5.3-12.1.6, and 11.6.5.2,... | 5.3 - MEDIUM | 2022-01-25 | 2022-02-01 |
CVE-2022-23026 | On BIG-IP ASM & Advanced WAF version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all versions o... | 4.3 - MEDIUM | 2022-01-25 | 2022-02-01 |
CVE-2022-23025 | On BIG-IP version 16.1.x before 16.1.1, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all versions of 13.1.x, when a SIP ... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23024 | On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.2, and all versions of 13.1.x, when th... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23023 | On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x and 12.1.x... | 6.5 - MEDIUM | 2022-01-25 | 2022-02-01 |
CVE-2022-23022 | On BIG-IP version 16.1.x before 16.1.2, when an HTTP profile is configured on a virtual server, undisclosed requests can caus... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23021 | On BIG-IP version 16.1.x before 16.1.2, when any of the following configurations are configured on a virtual server, undisclo... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23020 | On BIG-IP version 16.1.x before 16.1.2, when the 'Respond on Error' setting is enabled on the Request Logging profile and con... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23019 | On BIG-IP version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x and 12.1.x... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23018 | On BIG-IP AFM version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and 13.1.x beginning in 13.1.3.4,... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23017 | On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all versions of 13.1.x, when a virt... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23016 | On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP SSL Forward Proxy with TLS 1.3 is configured on a vi... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23015 | On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, and 14.1.2.6-14.1.4.4, when a Client SSL profile is configured... | 7.5 - HIGH | 2022-01-25 | 2022-02-01 |
CVE-2022-23014 | On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP APM portal access is configured on a virtual server,... | 6.5 - MEDIUM | 2022-01-25 | 2022-02-01 |
Known software with vulnerabilities from F5
Type | Vendor | Product | Version |
---|---|---|---|
Application | F5 | 3 Dns | - |
Application | F5 | Access Policy Manager Clients | 7.1.5 |
Hardware | F5 | Arx | - |
Application | F5 | Arx Data Manager | 3.0.0 |
Operating System | F5 | Arx Firmware | 6.0.0 |
Hardware | F5 | Big-ip | - |
Hardware | F5 | Big-ip 1000 | - |
Hardware | F5 | Big-ip 11050 | - |
Hardware | F5 | Big-ip 1500 | - |
Hardware | F5 | Big-ip 1600 | - |
Hardware | F5 | Big-ip 2000 | c112 |
Hardware | F5 | Big-ip 2000s | - |
Hardware | F5 | Big-ip 2200s | - |
Hardware | F5 | Big-ip 2400 | - |
Hardware | F5 | Big-ip 3400 | - |
Hardware | F5 | Big-ip 3410 | - |
Hardware | F5 | Big-ip 3600 | - |
Hardware | F5 | Big-ip 3900 | - |
Hardware | F5 | Big-ip 4000 | c113 |
Hardware | F5 | Big-ip 4000s | - |