F5 Big-ip Advanced Waf 漏洞

时间轴

版本

15.1.013
15.1.113
15.1.213
15.1.311
15.1.47

修正

Official Fix25
Temporary Fix0
Workaround0
Unavailable0
Not Defined2

易受攻击性

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined26

访问向量

Not Defined0
Physical0
Local0
Adjacent4
Network23

身份验证

Not Defined0
High4
Low8
None15

用户交互

Not Defined0
Required1
None26

C3BM Index

CVSSv3 Base

≤10
≤20
≤31
≤41
≤52
≤62
≤73
≤817
≤91
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤41
≤52
≤63
≤73
≤816
≤91
≤100

VulDB

≤10
≤20
≤31
≤42
≤52
≤62
≤72
≤817
≤91
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤81
≤90
≤100

CNA

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤810
≤92
≤100

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k0
<2k0
<5k2
<10k10
<25k14
<50k1
<100k0
≥100k0

本日攻击

<1k18
<2k3
<5k6
<10k0
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

🔴 CTI 活动

Affected Versions (74): 11.6, 11.6.1, 11.6.2, 11.6.3, 11.6.4, 11.6.5, 12.1, 12.1.1, 12.1.2, 12.1.3, 12.1.4, 12.1.5, 12.1.6, 13.1, 13.1.1, 13.1.2, 13.1.3, 13.1.3.1, 13.1.3.2, 13.1.3.3, 13.1.3.4, 13.1.3.5, 13.1.3.6, 13.1.4, 13.1.5, 14.1, 14.1.1, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.3, 14.1.4, 14.1.4.1, 14.1.4.2, 14.1.4.3, 14.1.4.4, 14.1.4.5, 14.1.5, 14.1.5.1, 14.1.5.2, 15.0, 15.1, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.3, 15.1.4, 15.1.5, 15.1.6, 15.1.7, 15.1.8, 15.1.9, 16, 16.0.0.1, 16.0.1, 16.1, 16.1.1, 16.1.2, 16.1.3, 16.1.3.1, 16.1.3.2, 17, 17.0, 17.0.0.1, 17.1

Link to Product Website: https://f5.com/

软件类型: Firewall Software

已发布BaseTemp漏洞0day今天易受攻修正CTICVE
2024-02-144.34.2F5 BIG-IP Advanced WAF/BIG-IP ASM Configuration Utility SQL注入$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2024-23603
2024-02-147.57.3F5 BIG-IP Advanced WAF/BIG-IP ASM Traffic Management Microkernel 内存损坏$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-23805
2024-02-147.57.3F5 BIG-IP Advanced WAF/BIG-IP ASM Request Body 拒绝服务$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-23308
2024-02-147.57.3F5 BIG-IP Advanced WAF/BIG-IP ASM Traffic Management Microkernel 拒绝服务$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2024-21849
2024-02-147.57.3F5 BIG-IP Advanced WAF/BIG-IP ASM Virtual Server 拒绝服务$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-21789
2023-02-017.57.3F5 BIG-IP Advanced WAF/BIG-IP ASM 拒绝服务$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-23552
2022-10-207.57.5F5 BIG-IP Advanced WAF Attack Signature False Positive Mode 拒绝服务$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2022-41836
2022-10-207.57.5F5 BIG-IP Advanced WAF/ASM Security Policy 拒绝服务$5k-$25k$0-$5kNot DefinedNot Defined0.05CVE-2022-41691
2022-10-207.27.0F5 BIG-IP Advanced WAF/ASM iControl REST 权限升级$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-41617
2022-05-067.97.8F5 BIG-IP Advanced WAF Appliance Mode Restrictions Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-25946

17 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 17 results.

更多条目由 F5

上一步一览下一步

Do you want to use VulDB in your project?

Use the official API to access entries easily!