The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of F5 BIG-IP TMOS

F5 BIG-IP: file reading via iAppsLX REST
A local attacker can read a file via iAppsLX REST of F5 BIG-IP, in order to obtain sensitive information...
CERTFR-2020-AVI-829, CVE-2020-27727, K50343630, VIGILANCE-VUL-34153
F5 BIG-IP: memory leak via zxfrd
An attacker can create a memory leak via zxfrd of F5 BIG-IP, in order to trigger a denial of service...
CERTFR-2020-AVI-829, CVE-2020-27725, K25595031, VIGILANCE-VUL-34147
F5 BIG-IP APM: open redirect via Virtual Server
An attacker can deceive the user via Virtual Server of F5 BIG-IP APM, in order to redirect him to a malicious site...
CERTFR-2020-AVI-829, CVE-2020-27729, K15310332, VIGILANCE-VUL-34144
F5 BIG-IP APM/Edge: privilege escalation via Edge Client
An attacker can bypass restrictions via Edge Client of F5 BIG-IP APM/Edge, in order to escalate his privileges...
CVE-2020-5892, K15838353, VIGILANCE-VUL-33939
F5 BIG-IP Virtual Server: information disclosure via TCP Sequence Numbers Reuse
An attacker can bypass access restrictions to data via TCP Sequence Numbers Reuse of F5 BIG-IP Virtual Server, in order to obtain sensitive information...
CERTFR-2020-AVI-762, CVE-2020-5947, K64571774, VIGILANCE-VUL-33929
DNS: Man-in-the-Middle via SAD DNS ICMP Rate
An attacker can act as a Man-in-the-Middle via ICMP Rate on DNS, in order to read or write data in the session...
CERTFR-2020-AVI-750, CERTFR-2020-AVI-764, CERTFR-2020-AVI-769, CERTFR-2020-AVI-776, CERTFR-2020-AVI-784, CERTFR-2020-AVI-786, CERTFR-2020-AVI-811, CERTFR-2020-AVI-834, CERTFR-2021-AVI-006, CVE-2020-25705, DLA-2483-1, DLA-2494-1, K09604370, openSUSE-SU-2020:2034-1, openSUSE-SU-2020:2112-1, openSUSE-SU-2020:2161-1, SAD DNS, SUSE-SU-2020:3326-1, SUSE-SU-2020:3484-1, SUSE-SU-2020:3491-1, SUSE-SU-2020:3501-1, SUSE-SU-2020:3503-1, SUSE-SU-2020:3507-1, SUSE-SU-2020:3512-1, SUSE-SU-2020:3513-1, SUSE-SU-2020:3522-1, SUSE-SU-2020:3532-1, SUSE-SU-2020:3544-1, SUSE-SU-2020:3717-1, SUSE-SU-2020:3764-1, USN-4657-1, USN-4658-1, USN-4658-2, USN-4659-1, USN-4659-2, USN-4680-1, VIGILANCE-VUL-33901
Intel Processors: multiple vulnerabilities via BIOS
An attacker can use several vulnerabilities via BIOS of Intel Processors...
CERTFR-2020-AVI-734, CVE-2020-0587, CVE-2020-0588, CVE-2020-0590, CVE-2020-0591, CVE-2020-0592, CVE-2020-0593, HPESBHF04056, INTEL-SA-00358, K04160444, K82356391, VIGILANCE-VUL-33888
F5 BIG-IP: memory leak via Diameter CEA PCRF
An attacker can create a memory leak via Diameter CEA PCRF of F5 BIG-IP, in order to trigger a denial of service...
CERTFR-2020-AVI-704, CVE-2020-5942, K82530456, VIGILANCE-VUL-33768
F5 BIG-IP Advanced WAF / FPS: denial of service via Client-side Alerts
An attacker can trigger a fatal error via Client-side Alerts of F5 BIG-IP Advanced WAF / FPS, in order to trigger a denial of service...
CERTFR-2020-AVI-704, CVE-2020-5946, K53821711, VIGILANCE-VUL-33766
F5 BIG-IP: Cross Site Scripting via TMUI
An attacker can trigger a Cross Site Scripting via TMUI of F5 BIG-IP, in order to run JavaScript code in the context of the web site...
CERTFR-2020-AVI-704, CVE-2020-5940, K43310520, VIGILANCE-VUL-33765
Our database contains other pages. You can request a free trial to read them.

Display information about F5 BIG-IP TMOS: