Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-21 | CVE-2017-6138 | Improper Input Validation vulnerability in F5 products In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. | 7.5 |
| 2017-12-21 | CVE-2017-6135 | Missing Release of Resource after Effective Lifetime vulnerability in F5 products In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, a slow memory leak as a result of undisclosed IPv4 or IPv6 packets sent to BIG-IP management port or self IP addresses may lead to out of memory (OOM) conditions. | 7.5 |
| 2017-12-21 | CVE-2017-6133 | Improper Input Validation vulnerability in F5 products In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service. | 7.5 |
| 2017-12-21 | CVE-2017-6132 | Improper Input Validation vulnerability in F5 products In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 13.0.0, 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 and 11.5.0 - 11.5.4, an undisclosed sequence of packets sent to BIG-IP High Availability state mirror listeners (primary and/or secondary IP) may cause TMM to restart. | 7.5 |
| 2017-12-21 | CVE-2017-6129 | Improper Input Validation vulnerability in F5 Big-Ip Access Policy Manager 12.1.2/13.0.0 In F5 BIG-IP APM software version 13.0.0 and 12.1.2, in some circumstances, APM tunneled VPN flows can cause a VPN/PPP connflow to be prematurely freed or cause TMM to stop responding with a "flow not in use" assertion. | 7.5 |
| 2017-12-21 | CVE-2017-0301 | Unspecified vulnerability in F5 Big-Ip Access Policy Manager In F5 BIG-IP APM software versions 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 and 12.1.2 BIG-IP APM portal access requests do not return the intended resources in some cases. high complexity f5 | 7.6 |
| 2017-12-21 | CVE-2017-17410 | Out-of-bounds Write vulnerability in Bitdefender Internet Security 2018 7.72918/73447 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. | 8.8 |
| 2017-12-21 | CVE-2017-17409 | Integer Overflow or Wraparound vulnerability in Bitdefender Internet Security 2018 7.72918/73447 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. | 8.8 |
| 2017-12-21 | CVE-2017-17408 | Integer Overflow or Wraparound vulnerability in Bitdefender Internet Security 2018 7.72918/73447 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. | 8.8 |
| 2017-12-21 | CVE-2017-17831 | Improper Input Validation vulnerability in GIT Large File Storage Project GIT Large File Storage GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a "url =" line in a .lfsconfig file within a repository. | 8.8 |