F5 Vulnerabilità

Sequenza temporale

Genere

Firewall Software	624
Not Defined	71
Web Server	9
Policy Management Software	3
Android App Software	1

Prodotto

F5 BIG-IP	436
F5 BIG-IP APM	60
F5 BIG-IP ASM	45
F5 BIG-IQ	38
F5 BIG-IP Advanced WAF	27

Contromisure

Official Fix	464
Temporary Fix	0
Workaround	10
Unavailable	7
Not Defined	229

Sfruttabilità

High	20
Functional	0
Proof-of-Concept	25
Unproven	7
Not Defined	658

Accesso al vettore

Not Defined	0
Physical	2
Local	53
Adjacent	70
Network	585

Autenticazione

Not Defined	0
High	54
Low	252
None	404

Interazione dell'utente

Not Defined	0
Required	102
None	608

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	5
≤4	57
≤5	138
≤6	169
≤7	172
≤8	130
≤9	26
≤10	13

CVSSv3 Temp

≤1	0
≤2	0
≤3	8
≤4	61
≤5	144
≤6	175
≤7	167
≤8	120
≤9	24
≤10	11

VulDB

≤1	0
≤2	1
≤3	22
≤4	120
≤5	136
≤6	212
≤7	61
≤8	125
≤9	21
≤10	12

NVD

≤1	0
≤2	0
≤3	0
≤4	5
≤5	35
≤6	82
≤7	50
≤8	166
≤9	25
≤10	28

CNA

≤1	0
≤2	0
≤3	0
≤4	4
≤5	18
≤6	27
≤7	16
≤8	74
≤9	11
≤10	3

Fornitore

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 giorni

<1k	2
<2k	19
<5k	155
<10k	273
<25k	253
<50k	8
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	443
<2k	58
<5k	91
<10k	98
<25k	20
<50k	0
<100k	0
≥100k	0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Products (74): 3-DNS Controller (2), APM (1), ARX Data Manager (1), ASM (8), Access (1), Advanced WAF (6), BIG-IP (436), BIG-IP AAM (1), BIG-IP AF (1), BIG-IP AFM (20), BIG-IP APM (60), BIG-IP APM AD (1), BIG-IP APM Client (8), BIG-IP APM Client Troubleshooting Utility (1), BIG-IP APM Clients (3), BIG-IP APM Edge Client (3), BIG-IP ASM (45), BIG-IP Access Policy Manager (3), BIG-IP Advanced WAF (27), BIG-IP Analytics (3), BIG-IP Application Acceleration Manager (1), BIG-IP Application Security Manager (1), BIG-IP CGNAT (1), BIG-IP Configuration utility (2), BIG-IP Controller for Kubernetes (1), BIG-IP DNS (7), BIG-IP DataSafe (1), BIG-IP Edge Client (11), BIG-IP FPS (2), BIG-IP GTM (3), BIG-IP Guided Configuration (4), BIG-IP LTM (3), BIG-IP LTM GSLB (1), BIG-IP Manager (1), BIG-IP Next (1), BIG-IP Next CNF (2), BIG-IP Next SPK (4), BIG-IP PEM (7), BIG-IP Virtual Edition (9), BIG-IP Virtual Server (5), BIG-IQ (38), BIG-IQ Centralized Management (9), BIG-IQ Cloud (2), BIG-IQ iControl (1), Big-IP Protocol Security Manager (1), Big-ip Protocol Security Module (1), Container Ingress Service (1), Edge Gateway (1), Enterprise Manager (16), F5OS (1), F5OS-A (6), F5OS-C (4), FirePass (16), FirePass 1000 (1), FirePass 1200 (1), FirePass 4100 (5), Firepass (1), Firepass 4100 (3), NGINX Agent (1), NGINX Ingress Controller (2), NGINX Instance Manager (1), NGINX Management Suite (2), NGINX Open Source (2), NGINX Plus (2), NGINX Service Mesh (1), Orchestration (1), Products (1), Rising (3), SSL Intercept iApp (2), SSL Orchestrator (3), Security (1), Traffix SDC (2), WebSafe Alert Server (3), iWorkflow (7)

Link to Vendor Website: https://f5.com/

Data di pubblicazione	Base	Temp	Vulnerabilità	Prod	Sfr	Con	EPSS	CTI	CVE
14/02/2024	6.7	6.6	F5 NGINX Plus/NGINX Open Source QUIC Module buffer overflow	Web Server	Not Defined	Official Fix	0.00043	0.03	CVE-2024-24990
14/02/2024	5.1	5.0	F5 BIG-IP Appliance Mode escalazione di privilegi	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-23976
14/02/2024	7.5	7.3	F5 NGINX Plus/NGINX Open Source QUIC Module denial of service	Web Server	Not Defined	Official Fix	0.00043	0.00	CVE-2024-24989
14/02/2024	4.4	4.3	F5 F5OS-A/F5OS-C QKView Utility directory traversal	Sconosciuto	Not Defined	Official Fix	0.00044	0.04	CVE-2024-23607
14/02/2024	4.3	4.2	F5 BIG-IP Advanced WAF/BIG-IP ASM Configuration Utility sql injection	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-23603
14/02/2024	4.7	4.7	F5 F5OS LDAP Remote Authentication escalazione di privilegi	Sconosciuto	Not Defined	Official Fix	0.00043	0.03	CVE-2024-24966
14/02/2024	7.5	7.3	F5 BIG-IP Traffic Management Microkernel denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-24775
14/02/2024	7.5	7.3	F5 BIG-IP Certificate denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-23979
14/02/2024	7.5	7.3	F5 BIG-IP/BIG-IP Next SPK Traffic Management Microkernel denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-23314
14/02/2024	7.5	7.3	F5 BIG-IP Advanced WAF/BIG-IP ASM Traffic Management Microkernel buffer overflow	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-23805
14/02/2024	7.2	7.0	F5 BIG-IP iControl REST autenticazione debole	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-22389
14/02/2024	7.5	7.3	F5 BIG-IP Advanced WAF/BIG-IP ASM Request Body denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-23308
14/02/2024	4.9	4.8	F5 BIG-IP Next SPK/BIG-IP Next CNF rivelazione di un 'informazione	Firewall Software	Not Defined	Official Fix	0.00043	0.05	CVE-2024-23306
14/02/2024	7.0	6.8	F5 BIG-IP/BIG-IQ scp escalazione di privilegi	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-21782
14/02/2024	7.5	7.3	F5 BIG-IP AFM IPS Engine denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-21771
14/02/2024	6.7	6.6	F5 BIG-IP iControl REST Endpoint escalazione di privilegi	Firewall Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-22093
14/02/2024	7.5	7.3	F5 BIG-IP Advanced WAF/BIG-IP ASM Traffic Management Microkernel denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-21849
14/02/2024	7.5	7.3	F5 BIG-IP Advanced WAF/BIG-IP ASM Virtual Server denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-21789
14/02/2024	7.5	7.3	F5 BIG-IP AFM Traffic Management Microkernel denial of service	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-21763
14/02/2024	7.5	7.3	F5 BIG-IP PEM Traffic Management Microkernel buffer overflow	Firewall Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-23982
26/10/2023	7.5	7.4	F5 BIG-IP Configuration Utility sql injection	Firewall Software	Not Defined	Official Fix	0.00646	0.05	CVE-2023-46748
26/10/2023	8.9	8.7	F5 BIG-IP Configuration Utility autenticazione debole	Firewall Software	Not Defined	Official Fix	0.97135	0.02	CVE-2023-46747
25/10/2023	5.3	5.3	F5 BIG-IP/BIG-IP Next/BIG-IP Next SPK/BIG-IP Next CNF ZebOS BGP denial of service	Firewall Software	Not Defined	Not Defined	0.00238	0.03	CVE-2023-45886
10/10/2023	7.6	7.5	F5 BIG-IP APM Edge Client Installer escalazione di privilegi	Firewall Software	Not Defined	Official Fix	0.00053	0.03	CVE-2023-5450
10/10/2023	6.5	6.4	F5 BIG-IP Attack Signature Check escalazione di privilegi	Firewall Software	Not Defined	Official Fix	0.00046	0.03	CVE-2023-40534

685 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 685 results.

◂ PrecedenteVisione D'insiemeIl prossimo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!