All 15 CVE vulnerabilities found in BIG-IP AFM, with AI-generated Chinese analysis, references, and POCs.
This page aggregates Common Weakness Enumerations (CWE) specifically related to F5 Networks BIG-IP Advanced Firewall Manager (AFM). It serves as a centralized reference point for security professionals analyzing the attack surface of this specific firewall module. The content collects known vulnerabilities, misconfigurations, and software defects that impact the availability, confidentiality, or integrity of BIG-IP AFM deployments. The data spans historical records and recent disclosures, ensuring a comprehensive view of both legacy and contemporary security issues. Users can discover how F5 Networks has responded to different threat vectors over time by tracking official security advisories and patch releases. The page allows for a deeper understanding of specific weakness classes prevalent in the product, such as authentication bypasses, command injection flaws, or denial-of-service conditions. Additionally, it provides a clear timeline for looking up a product's vulnerability history, enabling teams to assess risk exposure based on past incidents and the subsequent remediation efforts. This resource is essential for administrators seeking to audit their defenses against known exploits. It facilitates the identification of patterns in how certain weaknesses have been exploited in the wild versus how they have been mitigated in software updates. By consolidating this information, the page supports informed decision-making regarding upgrading, configuration hardening, and monitoring strategies for BIG-IP AFM environments.
Vendor: F5 Networks, Inc.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-41806 | BIG-IP AFM NAT64 Policy Vulnerability CVE-2022-41806 CWE-400 | 7.5 | High | 2022-10-19 |
| CVE-2022-28695 | F5 BIG-IP AFM 代码问题漏洞 CWE-20 | 7.2 | High | 2022-05-05 |
| CVE-2022-23028 | F5 BIG-IP AFM 安全漏洞 CWE-682 | 5.3 | - | 2022-01-25 |
| CVE-2022-23024 | F5 BIG-IP AFM 资源管理错误漏洞 CWE-400 | 7.5 | - | 2022-01-25 |
| CVE-2022-23018 | F5 BIG-IP AFM 安全漏洞 CWE-755 | 7.5 | - | 2022-01-25 |
| CVE-2021-23040 | F5 BIG-IP APM和F5 BIG-IP SQL注入漏洞 CWE-89 | 8.8 | - | 2021-09-14 |
| CVE-2021-22983 | F5 BIG-IP AFM 跨站脚本漏洞 | 5.4 | - | 2021-02-12 |
| CVE-2020-27714 | F5 BIG-IP AFM 安全漏洞 | 7.5 | - | 2020-12-24 |
| CVE-2020-5937 | F5 BIG-IP APM 安全漏洞 | 7.5 | - | 2020-10-29 |
| CVE-2020-5920 | BIG-IP SQL注入漏洞 | 4.3 | - | 2020-08-26 |
| CVE-2019-6672 | F5 BIG-IP AFM 输入验证错误漏洞 | 5.3 | - | 2019-11-27 |
| CVE-2018-15313 | F5 BIG-IP AFM 跨站脚本漏洞 | 6.1 | - | 2018-10-19 |
| CVE-2018-15314 | F5 BIG-IP AFM 跨站脚本漏洞 | 6.1 | - | 2018-10-19 |
| CVE-2017-6142 | F5 BIG-IP Advanced Firewall Manager 安全漏洞 | 4.8 | - | 2018-01-19 |
| CVE-2017-0304 | F5 BIG-IP Advanced Firewall Manager Configuration utility SQL注入漏洞 | 6.5 | - | 2017-12-21 |
All 15 known CVE vulnerabilities affecting BIG-IP AFM with full Chinese analysis, references, and POCs where available.