Vulnerabilities > F5 > High

DATE CVE VULNERABILITY TITLE RISK
2019-10-03 CVE-2018-14882 Out-of-bounds Read vulnerability in multiple products
The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.
7.5
2019-10-03 CVE-2018-14880 Out-of-bounds Read vulnerability in multiple products
The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().
7.5
2019-10-03 CVE-2018-14879 Classic Buffer Overflow vulnerability in multiple products
The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().
7.0
2019-10-03 CVE-2018-14469 Out-of-bounds Read vulnerability in multiple products
The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().
7.5
2019-10-03 CVE-2018-14468 Out-of-bounds Read vulnerability in multiple products
The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().
7.5
2019-10-03 CVE-2018-14465 Out-of-bounds Read vulnerability in multiple products
The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
7.5
2019-10-03 CVE-2018-14463 Out-of-bounds Read vulnerability in multiple products
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167.
7.5
2019-10-03 CVE-2018-14462 Out-of-bounds Read vulnerability in multiple products
The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().
7.5
2019-09-25 CVE-2019-6656 Information Exposure Through Log Files vulnerability in F5 products
BIG-IP APM Edge Client before version 7.1.8 (7180.2019.508.705) logs the full apm session ID in the log files.
network
low complexity
f5 CWE-532
7.5
2019-09-23 CVE-2019-16714 Missing Initialization of Resource vulnerability in multiple products
In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.
network
low complexity
linux canonical f5 CWE-909
7.5