Skip to main content

Big Ip Afm

2 CVEs product

Monthly

CVE-2017-6166 MEDIUM This Month

In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Denial Of Service Big Ip Afm Big Ip Analytics Big Ip Apm Big Ip Application Acceleration Manager +7
NVD
CVSS 3.1
5.9
EPSS
1.2%
CVE-2017-6168 HIGH POC THREAT Act Now

On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 76.2%.

Information Disclosure Big Ip Ltm Big Ip Application Acceleration Manager Big Ip Afm Big Ip Analytics +5
NVD
CVSS 3.0
7.4
EPSS
76.2%
Threat
5.3
EPSS 1% CVSS 5.9
MEDIUM This Month

In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Denial Of Service Big Ip Afm Big Ip Analytics +9
NVD
EPSS 76% 5.3 CVSS 7.4
HIGH POC THREAT Act Now

On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 76.2%.

Information Disclosure Big Ip Ltm Big Ip Application Acceleration Manager +7
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy