Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

F5 — Vulnerabilities & Security Advisories 398

Browse all 398 CVE security advisories affecting F5. AI-powered Chinese analysis, POCs, and references for each vulnerability.

F5 Networks specializes in application delivery networking, providing load balancing, security, and traffic management solutions for enterprise web applications. With 345 recorded Common Vulnerabilities and Exposures (CVEs), the platform has historically been susceptible to a wide array of critical flaws. These include remote code execution (RCE) vulnerabilities, which allow attackers to gain unauthorized control over systems, alongside cross-site scripting (XSS) and privilege escalation issues that compromise data integrity and user access. Notable incidents often involve misconfigurations or unpatched software versions that expose backend infrastructure to external threats. The sheer volume of disclosed vulnerabilities highlights the complexity of maintaining secure application delivery networks. Organizations relying on these services must prioritize rigorous patch management and continuous monitoring to mitigate risks associated with such a extensive vulnerability history, ensuring operational resilience against evolving cyber threats.

Top products by F5: BIG-IP NGINX Open Source BIG-IP APM F5OS - Appliance BIG-IP Edge Client NGINX Plus BIG-IP Next Central Manager BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) BIG-IP Next SPK F5OS-A BIG-IQ BIG-IP Advanced WAF & ASM BIG-IP ASM NGINX Instance Manager BIG-IP AFM APM Clients NGINX Agent NGINX BIG-IP DNS NGINX Ingress Controller Traffix SDC BIG-IP, BIG-IQ, iWorkflow, Enterprise Manager F5 SSL Orchestrator BIG-IP (Advanced WAF, APM, ASM) BIG-IP PEM NGINX JavaScript F5 BIG-IP Container Ingress Services F5OS - Chassis F5 Access NGINX Unit
CVE IDTitleCVSSSeverityPublished
CVE-2023-40534 BIG-IP HTTP/2 vulnerability — BIG-IPCWE-401 7.5 High2023-10-10
CVE-2023-39447 BIG-IP APM Guided Configuration vulnerability — BIG-IPCWE-532 4.4 Medium2023-10-10
CVE-2023-5450 BIG-IP Edge Client for macOS vulnerability — BIG-IP Edge ClientCWE-345 7.3 High2023-10-10
CVE-2023-43125 BIG-IP APM Clients TunnelCrack vulnerability — BIG-IP Edge ClientCWE-319 6.8 Medium2023-09-27
CVE-2023-43124 BIG-IP APM Clients TunnelCrack vulnerability — BIG-IP Edge ClientCWE-319 5.3 Medium2023-09-27
CVE-2023-38423 BIG-IP Configuration utility vulnerability — BIG-IPCWE-79 5.4 Medium2023-08-02
CVE-2023-38419 BIG-IP and BIG-IQ iControl SOAP vulnerability — BIG-IPCWE-755 4.3 Medium2023-08-02
CVE-2023-38418 BIG-IP Edge Client for macOS vulnerability — BIG-IP Edge ClientCWE-347 7.8 High2023-08-02
CVE-2023-38138 BIG-IP Configuration utility vulnerability — BIG-IPCWE-79 7.5 High2023-08-02
CVE-2023-36858 BIG-IP Edge Client for Windows and macOS vulnerability — BIG-IP Edge ClientCWE-345 7.1 High2023-08-02
CVE-2023-36494 F5OS-A vulnerability — F5OS - ApplianceCWE-532 4.4 Medium2023-08-02
CVE-2023-3470 BIG-IP FIPS HSM password vulnerability CVE-2023-3470 — BIG-IPCWE-1391 6.0 Medium2023-08-02
CVE-2023-29240 BIG-IQ iControl REST Vulnerability — BIG-IQCWE-863 5.4 Medium2023-05-03
CVE-2023-29163 BIG-IP UDP Profile vulnerability — BIG-IPCWE-401 7.5 High2023-05-03
CVE-2023-28742 BIG-IP iQuery mesh vulnerability — BIG-IPCWE-78 7.2 High2023-05-03
CVE-2023-28724 NGINX Management Suite vulnerability — NGINX Instance ManagerCWE-276 7.1 High2023-05-03
CVE-2023-28656 NGINX Management Suite vulnerability — NGINX Instance ManagerCWE-639 8.1 High2023-05-03
CVE-2023-28406 BIG-IP Configuration utility vulnerability — BIG-IPCWE-22 4.3 Medium2023-05-03
CVE-2023-27378 BIG-IP TMUI XSS vulnerability — BIG-IPCWE-79 7.5 High2023-05-03
CVE-2023-24594 BIG-IP TMM SSL vulnerability — BIG-IPCWE-400 5.3 Medium2023-05-03
CVE-2023-24461 BIG-IP Edge Client for Windows and macOS vulnerability — BIG-IP Edge ClientCWE-295 7.4 High2023-05-03
CVE-2023-22372 BIG-IP Edge Client for Windows and Mac OS vulnerability — BIG-IP Edge ClientCWE-924 5.9 Medium2023-05-03
CVE-2023-1550 NGINX Agent vulnerability CVE-2023-1550 — NGINX AgentCWE-532 5.5 Medium2023-03-29
CVE-2023-23555 BIG-IP Virtual Edition vulnerability — BIG-IPCWE-665 7.5 High2023-02-01
CVE-2023-23552 BIG-IP Advanced WAF and ASM vulnerability — BIG-IPCWE-400 7.5 High2023-02-01
CVE-2023-22842 BIG-IP SIP profile vulnerability — BIG-IPCWE-121 7.5 High2023-02-01
CVE-2023-22839 BIG-IP DNS profile vulnerability — BIG-IPCWE-476 7.5 High2023-02-01
CVE-2023-22664 BIG-IP HTTP/2 profile vulnerability — BIG-IPCWE-400 7.5 High2023-02-01
CVE-2023-22657 F5OS vulnerability — F5OS-ACWE-77 7.0 High2023-02-01
CVE-2023-22422 HTTP profile vulnerability — BIG-IPCWE-120 7.5 High2023-02-01

This page lists every published CVE security advisory associated with F5. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.