Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

F5 — Vulnerabilities & Security Advisories 345

Browse all 345 CVE security advisories affecting F5. AI-powered Chinese analysis, POCs, and references for each vulnerability.

F5 Networks specializes in application delivery networking, providing load balancing, security, and traffic management solutions for enterprise web applications. With 345 recorded Common Vulnerabilities and Exposures (CVEs), the platform has historically been susceptible to a wide array of critical flaws. These include remote code execution (RCE) vulnerabilities, which allow attackers to gain unauthorized control over systems, alongside cross-site scripting (XSS) and privilege escalation issues that compromise data integrity and user access. Notable incidents often involve misconfigurations or unpatched software versions that expose backend infrastructure to external threats. The sheer volume of disclosed vulnerabilities highlights the complexity of maintaining secure application delivery networks. Organizations relying on these services must prioritize rigorous patch management and continuous monitoring to mitigate risks associated with such a extensive vulnerability history, ensuring operational resilience against evolving cyber threats.

Top products by F5: BIG-IP NGINX Open Source BIG-IP APM F5OS - Appliance BIG-IP Edge Client BIG-IP Next Central Manager BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) NGINX Plus BIG-IP Next SPK F5OS-A BIG-IP ASM NGINX Instance Manager BIG-IP Advanced WAF & ASM BIG-IP AFM BIG-IP, BIG-IQ, iWorkflow, Enterprise Manager F5 SSL Orchestrator BIG-IP DNS BIG-IQ APM Clients NGINX Agent BIG-IP (Advanced WAF, APM, ASM) NGINX Ingress Controller NGINX Traffix SDC NGINX Unit F5OS - Chassis F5 Access BIG-IP AFM & PEM BIG-IP Next CNF NGINX OpenID Connect
CVE IDTitleCVSSSeverityPublished
CVE-2022-41742 NGINX ngx_http_mp4_module vulnerability CVE-2022-41742 — NGINXCWE-787 7.1 High2022-10-19
CVE-2022-41741 NGINX ngx_http_mp4_module vulnerability CVE-2022-41741 — NGINXCWE-787 7.0 High2022-10-19
CVE-2022-41694 BIG-IP and BIG-IQ mcpd vulnerability CVE-2022-41694 — BIG-IPCWE-20 4.9 Medium2022-10-19
CVE-2022-41691 BIG-IP Advanced WAF/ASM bd vulnerability CVE-2022-41691 — BIG-IP Advanced WAF & ASMCWE-763 7.5 High2022-10-19
CVE-2022-41624 BIG-IP iRules vulnerability CVE-2022-41624 — BIG-IPCWE-401 7.5 High2022-10-19
CVE-2022-41617 BIG-IP Advanced WAF and ASM iControl REST vulnerability CVE-2022-41617 — BIG-IP Advanced WAF & ASMCWE-77 7.2 High2022-10-19
CVE-2022-36795 BIG-IP software SYN cookies vulnerability CVE-2022-36795 — BIG-IPCWE-682 5.3 Medium2022-10-19
CVE-2022-35735 BIG-IP monitor configuration vulnerability CVE-2022-35735 — BIG-IPCWE-74 7.2 High2022-08-04
CVE-2022-35728 iControl REST vulnerability CVE-2022-35728 — BIG-IPCWE-613 8.1 High2022-08-04
CVE-2022-35272 BIG-IP HTTP MRF vulnerability CVE-2022-35272 — BIG-IPCWE-404 7.5 High2022-08-04
CVE-2022-35245 BIG-IP APM access policy vulnerability CVE-2022-35245 — BIG-IP APMCWE-476 7.5 High2022-08-04
CVE-2022-35243 Authenticated iControl REST in Appliance mode vulnerability CVE-2022-35243 — BIG-IPCWE-269 8.7 High2022-08-04
CVE-2022-35241 NGINX Instance Manager vulnerability CVE-2022-35241 — NGINX Instance ManagerCWE-400 6.5 Medium2022-08-04
CVE-2022-35240 BIG-IP Message Routing MQTT vulnerability CVE-2022-35240 — BIG-IPCWE-404 7.5 High2022-08-04
CVE-2022-35236 HTTP2 profile vulnerability CVE-2022-35236 — BIG-IPCWE-400 7.5 High2022-08-04
CVE-2022-34865 Traffic intelligence feeds vulnerability CVE-2022-34865 — BIG-IPCWE-295 4.8 Medium2022-08-04
CVE-2022-34862 TMM vulnerability CVE-2022-34862 — BIG-IPCWE-835 7.5 High2022-08-04
CVE-2022-34851 BIG-IP and BIG-IQ iControl SOAP vulnerability CVE-2022-34851 — BIG-IPCWE-20 4.3 Medium2022-08-04
CVE-2022-34844 BIG-IP and BIG-IQ AWS vulnerability CVE-2022-34844 — BIG-IPCWE-20 5.9 Medium2022-08-04
CVE-2022-34655 TMM vulnerability CVE-2022-34655 — BIG-IPCWE-457 7.5 High2022-08-04
CVE-2022-34651 BIG-IP TLS 1.3 iRule vulnerability CVE-2022-34651 — BIG-IPCWE-476 7.5 High2022-08-04
CVE-2022-33968 BIG-IP LTM and APM NTLM vulnerability CVE-2022-33968 — BIG-IPCWE-125 3.7 Low2022-08-04
CVE-2022-33962 BIG-IP iRule vulnerability CVE-2022-33962 — BIG-IPCWE-269 6.7 Medium2022-08-04
CVE-2022-33947 BIG-IP DNS TMUI Vulnerability CVE-2022-33947 — BIG-IP DNSCWE-502 5.4 Medium2022-08-04
CVE-2022-33203 BIG-IP APM and F5 SSL Orchestrator vulnerability CVE-2022-33203 — BIG-IP APMCWE-400 7.5 High2022-08-04
CVE-2022-32455 TMM vulnerability CVE-2022-32455 — BIG-IPCWE-119 7.5 High2022-08-04
CVE-2022-31473 BIG-IP APM Appliance mode vulnerability CVE-2022-31473 — BIG-IP APMCWE-22 6.8 Medium2022-08-04
CVE-2022-30535 NGINX Ingress Controller vulnerability CVE-2022-30535 — NGINX Ingress ControllerCWE-20 6.5 Medium2022-08-04
CVE-2022-29491 F5 BIG-IP多款产品代码问题漏洞 — BIG-IP LTM, Advanced WAF, ASM, and APMCWE-476 7.5 High2022-05-05
CVE-2022-29480 F5 BIG-IP 资源管理错误漏洞 — BIG-IPCWE-400 5.3 Medium2022-05-05

This page lists every published CVE security advisory associated with F5. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.