| | CVE-2015-5058 |  F5 | high | 7.8 | 0.8%
| | Memory leak in the virtual server component in F5 Big-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Li… | Aug 24, 2015 | May 6, 2026 |
| | CVE-2015-4040 | F5 | medium | 4.0 | 6.8%
| | Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterp… | Sep 17, 2015 | May 6, 2026 |
| | CVE-2015-4638 | F5 | medium | 5.0 | 0.7%
| | The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and… | Sep 18, 2015 | May 6, 2026 |
| | CVE-2015-6546 | F5 | medium | 6.1 | 0.3%
| | The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM, Link Controller, and LTM 11.0.0 before 11.6.0, … | Nov 6, 2015 | May 6, 2026 |
| | CVE-2015-7394 | F5 | critical | 9.0 | 1.3%
| | The datastor kernel module in F5 BIG-IP Analytics, APM, ASM, Link Controller, and LTM 11.1.0 before … | Nov 6, 2015 | May 6, 2026 |
| | CVE-2015-3628 | F5 | critical | 9.0 | 75.2%
| | The iControl API in F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.0 before … | Dec 7, 2015 | May 6, 2026 |
| | CVE-2015-8098 | F5 | critical | 9.8 | 10.9%
| | F5 BIG-IP APM 11.4.1 before 11.4.1 HF9, 11.5.x before 11.5.3, and 11.6.0 before 11.6.0 HF4 allow rem… | Jan 12, 2016 | May 6, 2026 |
| | CVE-2015-7393 | F5 | high | 7.4 | 0.1%
| | dcoep in BIG-IP LTM, Analytics, APM, ASM, and Link Controller 11.2.0 through 11.6.0 and 12.0.0 befor… | Jan 12, 2016 | May 6, 2026 |
| | CVE-2015-7759 | F5 | low | 3.7 | 0.8%
| | BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM 12.0.0 before HF1, when the TCP … | Jan 12, 2016 | May 6, 2026 |
| | CVE-2015-8611 | F5 | critical | 9.8 | 3.6%
| | BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, and PEM 12.0.0 before HF1 on the 20… | Jan 12, 2016 | May 6, 2026 |
| | CVE-2015-5516 | F5 | high | 7.5 | 1.6%
| | Memory leak in the last hop kernel module in F5 BIG-IP LTM, GTM, and Link Controller 10.1.x, 10.2.x … | Jan 20, 2016 | May 6, 2026 |
| | CVE-2016-0742 | F5 | high | 7.5 | 78.8%
| | The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial… | Feb 15, 2016 | May 6, 2026 |
| | CVE-2016-0746 | F5 | critical | 9.8 | 6.3%
| | Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 a… | Feb 15, 2016 | May 6, 2026 |
| | CVE-2016-0747 | F5 | medium | 5.3 | 20.0%
| | The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution,… | Feb 15, 2016 | May 6, 2026 |
| | CVE-2015-7547 | F5 | high | 8.1 | 94.0%
| | Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv … | Feb 18, 2016 | May 6, 2026 |
| | CVE-2015-8240 | F5 | high | 7.5 | 1.2%
| | The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link … | Apr 11, 2016 | May 6, 2026 |
| | CVE-2015-8021 | F5 | medium | 4.3 | 0.1%
| | Incomplete blacklist vulnerability in the Configuration utility in F5 BIG-IP LTM, Analytics, APM, AS… | Apr 12, 2016 | May 6, 2026 |
| | CVE-2016-2084 | F5 | high | 7.4 | 0.5%
| | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 build… | Apr 13, 2016 | May 6, 2026 |
| | CVE-2016-3686 | F5 | medium | 5.9 | 0.5%
| | The Single Sign-On (SSO) feature in F5 BIG-IP APM 11.x before 11.6.0 HF6 and BIG-IP Edge Gateway 11.… | Apr 13, 2016 | May 6, 2026 |
| | CVE-2015-8099 | F5 | medium | 5.9 | 1.0%
| | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 HF10,… | May 13, 2016 | May 6, 2026 |
| | CVE-2016-4450 | F5 | high | 7.5 | 3.5%
| | os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to cause… | Jun 7, 2016 | May 6, 2026 |
| | CVE-2016-4545 | F5 | high | 7.5 | 1.2%
| | Virtual servers in F5 BIG-IP 11.5.4, when SSL profiles are enabled, allow remote attackers to cause … | Jun 7, 2016 | May 6, 2026 |
| | CVE-2016-3687 | F5 | medium | 5.3 | 0.4%
| | Open redirect vulnerability in F5 BIG-IP APM 11.2.1, 11.4.x, 11.5.x, and 11.6.x before 11.6.0 HF6 an… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-5021 | F5 | medium | 4.9 | 0.2%
| | The iControl REST service in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM … | Jun 24, 2016 | May 6, 2026 |
| | CVE-2016-5020 | F5 | high | 8.8 | 1.8%
| | F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to modify the account configuration of… | Jun 30, 2016 | May 6, 2026 |
| | CVE-2015-5738 | F5 | high | 7.5 | 0.8%
| | The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II … | Jul 26, 2016 | May 6, 2026 |
| | CVE-2015-8022 | F5 | high | 7.5 | 0.5%
| | The Configuration utility in F5 BIG-IP LTM, Analytics, APM, ASM, GTM, and Link Controller 11.x befor… | Aug 19, 2016 | May 6, 2026 |
| | CVE-2016-5736 | F5 | high | 7.5 | 1.1%
| | The default configuration of the IPsec IKE peer listener in F5 BIG-IP LTM, Analytics, APM, ASM, and … | Aug 19, 2016 | May 6, 2026 |
| | CVE-2016-1497 | F5 | medium | 4.9 | 0.2%
| | The Configuration utility in F5 BIG-IP systems 11.0.x, 11.1.x, 11.2.x before 11.2.1 HF16, 11.3.x, 11… | Aug 26, 2016 | May 6, 2026 |
| | CVE-2016-5023 | F5 | high | 7.5 | 3.0%
| | Virtual servers in F5 BIG-IP systems 11.2.1 HF11 through HF15, 11.4.1 HF4 through HF10, 11.5.3 throu… | Aug 26, 2016 | May 6, 2026 |
| | CVE-2016-5022 | F5 | critical | 9.8 | 3.1%
| | F5 BIG-IP LTM, Analytics, APM, ASM, and Link Controller 11.2.x before 11.2.1 HF16, 11.3.x, 11.4.x, 1… | Sep 7, 2016 | May 6, 2026 |
| | CVE-2016-6876 | F5 | high | 7.5 | 0.7%
| | The RESOLV::lookup iRule command in F5 BIG-IP LTM, APM, ASM, and Link Controller 10.2.1 through 10.2… | Sep 7, 2016 | May 6, 2026 |
| | CVE-2016-5700 | F5 | critical | 9.8 | 5.6%
| | Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, … | Oct 3, 2016 | May 6, 2026 |
| | CVE-2016-5745 | F5 | critical | 9.8 | 3.9%
| | F5 BIG-IP LTM systems 11.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF11, 11.5.0, 11.5.1 bef… | Oct 5, 2016 | May 6, 2026 |
| | CVE-2016-1247 | F5 | high | 7.8 | 9.8%
| | The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6… | Nov 29, 2016 | May 6, 2026 |
| | CVE-2016-5024 | F5 | medium | 5.9 | 1.7%
| | Virtual servers in F5 BIG-IP systems 11.6.1 before 11.6.1 HF1 and 12.1.x before 12.1.2, when configu… | Jan 3, 2017 | May 6, 2026 |
| | CVE-2016-9247 | F5 | medium | 5.9 | 0.8%
| | Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile… | Jan 10, 2017 | May 6, 2026 |
| | CVE-2016-9249 | F5 | high | 7.5 | 0.8%
| | An undisclosed traffic pattern received by a BIG-IP Virtual Server with TCP Fast Open enabled may ca… | Jan 31, 2017 | May 13, 2026 |
| | CVE-2016-9244 | F5 | high | 7.5 | 67.5%
| | A BIG-IP virtual server configured with a Client SSL profile that has the non-default Session Ticket… | Feb 9, 2017 | May 13, 2026 |
| | CVE-2016-6249 | F5 | medium | 5.3 | 0.1%
| | F5 BIG-IP 12.0.0 and 11.5.0 - 11.6.1 REST requests which timeout during user account authentication … | Feb 20, 2017 | May 13, 2026 |
| | CVE-2016-9245 | F5 | medium | 5.9 | 0.7%
| | In F5 BIG-IP systems 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profil… | Mar 7, 2017 | May 13, 2026 |
| | CVE-2016-7468 | F5 | medium | 5.9 | 0.9%
| | An unauthenticated remote attacker may be able to disrupt services on F5 BIG-IP 11.4.1 - 11.5.4 devi… | Mar 23, 2017 | May 13, 2026 |
| | CVE-2016-7474 | F5 | medium | 5.5 | 0.1%
| | In some cases the MCPD binary cache in F5 BIG-IP devices may allow a user with Advanced Shell access… | Mar 27, 2017 | May 13, 2026 |
| | CVE-2016-9252 | F5 | high | 7.5 | 1.2%
| | The Traffic Management Microkernel (TMM) in F5 BIG-IP before 11.5.4 HF3, 11.6.x before 11.6.1 HF2 an… | Mar 27, 2017 | May 13, 2026 |
| | CVE-2017-0305 | F5 | critical | 9.8 | 2.9%
| | F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that … | Apr 6, 2017 | May 13, 2026 |
| | CVE-2017-6130 | F5 | high | 7.4 | 0.3%
| | F5 SSL Intercept iApp 1.5.0 - 1.5.7 and SSL Orchestrator 2.0 is vulnerable to a Server-Side Request … | Apr 6, 2017 | May 13, 2026 |
| | CVE-2016-7467 | F5 | medium | 5.3 | 1.6%
| | The TMM SSO plugin in F5 BIG-IP APM 12.0.0 - 12.1.1, 11.6.0 - 11.6.1 HF1, 11.5.4 - 11.5.4 HF2, when … | Apr 11, 2017 | May 13, 2026 |
| | CVE-2017-6128 | F5 | high | 7.5 | 0.9%
| | An attacker may be able to cause a denial-of-service (DoS) attack against the sshd component in F5 B… | May 1, 2017 | May 13, 2026 |
| | CVE-2016-9251 | F5 | high | 8.8 | 0.5%
| | In F5 BIG-IP 12.0.0 through 12.1.2, an authenticated attacker may be able to cause an escalation of … | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9253 | F5 | high | 7.5 | 0.8%
| | In F5 BIG-IP 12.1.0 through 12.1.2, specific websocket traffic patterns may cause a disruption of se… | May 9, 2017 | May 13, 2026 |