Vulnerabilities > F5 > High

DATE CVE VULNERABILITY TITLE RISK
2022-08-04 CVE-2022-35236 Unspecified vulnerability in F5 products
In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when an HTTP2 profile is configured on a virtual server, undisclosed traffic can cause an increase in memory resource utilization.
network
low complexity
f5
7.5
2022-08-04 CVE-2022-35240 Unspecified vulnerability in F5 products
In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when the Message Routing (MR) Message Queuing Telemetry Transport (MQTT) profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization.
network
low complexity
f5
7.5
2022-08-04 CVE-2022-35245 Unspecified vulnerability in F5 Big-Ip Access Policy Manager
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5.1, when a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.
network
low complexity
f5
7.5
2022-08-04 CVE-2022-35735 Unspecified vulnerability in F5 products
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, an authenticated attacker with Resource Administrator or Manager privileges can create or modify existing monitor objects in the Configuration utility in an undisclosed manner leading to a privilege escalation.
network
low complexity
f5
7.2
2022-07-18 CVE-2022-34027 Unspecified vulnerability in F5 NJS 0.7.4
Nginx NJS v0.7.4 was discovered to contain a segmentation violation via njs_value_property at njs_value.c.
network
low complexity
f5
7.5
2022-07-18 CVE-2022-34028 Unspecified vulnerability in F5 NJS 0.7.5
Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njs_utf8_next at src/njs_utf8.h.
network
low complexity
f5
7.5
2022-07-18 CVE-2022-34030 Unspecified vulnerability in F5 NJS 0.7.5
Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njs_djb_hash at src/njs_djb_hash.c.
network
low complexity
f5
7.5
2022-07-18 CVE-2022-34031 Unspecified vulnerability in F5 NJS 0.7.5
Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njs_value_to_number at src/njs_value_conversion.h.
network
low complexity
f5
7.5
2022-07-18 CVE-2022-34032 Unspecified vulnerability in F5 NJS 0.7.5
Nginx NJS v0.7.5 was discovered to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c.
network
low complexity
f5
7.5
2022-05-12 CVE-2022-29369 Improper Check for Unusual or Exceptional Conditions vulnerability in F5 NJS 0.7.2
Nginx NJS v0.7.2 was discovered to contain a segmentation violation via njs_lvlhsh_bucket_find at njs_lvlhsh.c.
network
low complexity
f5 CWE-754
7.5