| | CVE-2017-6136 |  F5 | medium | 5.9 | 0.6%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software… | Dec 21, 2017 | May 13, 2026 |
| | CVE-2017-6135 | F5 | high | 7.5 | 0.5%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software… | Dec 21, 2017 | May 13, 2026 |
| | CVE-2017-6134 | F5 | medium | 6.5 | 1.4%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software… | Dec 21, 2017 | May 13, 2026 |
| | CVE-2017-6133 | F5 | high | 7.5 | 0.6%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software vers… | Dec 21, 2017 | May 13, 2026 |
| | CVE-2017-6132 | F5 | high | 7.5 | 2.2%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software… | Dec 21, 2017 | May 13, 2026 |
| | CVE-2017-6129 | F5 | high | 7.5 | 0.5%
| | In F5 BIG-IP APM software version 13.0.0 and 12.1.2, in some circumstances, APM tunneled VPN flows c… | Dec 21, 2017 | May 13, 2026 |
| | CVE-2017-0304 | F5 | medium | 5.4 | 0.2%
| | A SQL injection vulnerability exists in the BIG-IP AFM management UI on versions 12.0.0, 12.1.0, 12.… | Dec 21, 2017 | May 13, 2026 |
| | CVE-2017-0301 | F5 | high | 7.6 | 0.1%
| | In F5 BIG-IP APM software versions 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 1… | Dec 21, 2017 | May 13, 2026 |
| | CVE-2017-6166 | F5 | medium | 5.9 | 1.2%
| | In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0… | Nov 22, 2017 | May 13, 2026 |
| | CVE-2017-6168 | F5 | high | 7.4 | 76.2%
| | On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or … | Nov 17, 2017 | May 13, 2026 |
| | CVE-2017-6163 | F5 | medium | 5.9 | 1.5%
| | In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, PSM software version 12.0.0 to 12.1.2, 1… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-6162 | F5 | medium | 5.9 | 1.5%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, Websa… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-6161 | F5 | medium | 5.3 | 2.7%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAc… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-6160 | F5 | medium | 5.9 | 4.6%
| | In F5 BIG-IP AAM and PEM software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.4.1 to 11.5.4, a re… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-6159 | F5 | medium | 5.9 | 0.9%
| | F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe software versi… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-6157 | F5 | high | 8.1 | 6.9%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-0303 | F5 | high | 7.5 | 2.4%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-6165 | F5 | critical | 9.8 | 2.0%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 … | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6145 | F5 | high | 7.3 | 0.4%
| | iControl REST in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSaf… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6144 | F5 | high | 7.4 | 0.2%
| | In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6141 | F5 | medium | 5.9 | 0.6%
| | In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and WebSafe 12.1.0 through 12.1.2, certa… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6147 | F5 | medium | 5.9 | 0.7%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.1.2-HF1 a… | Sep 18, 2017 | May 13, 2026 |
| | CVE-2017-7529 | F5 | high | 7.5 | 91.9%
| | Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerabili… | Jul 13, 2017 | May 13, 2026 |
| | CVE-2016-7469 | F5 | medium | 5.4 | 0.3%
| | A stored cross-site scripting (XSS) vulnerability in the Configuration utility device name change pa… | Jun 9, 2017 | May 13, 2026 |
| | CVE-2014-6031 | F5 | medium | 4.9 | 0.5%
| | Buffer overflow in the mcpq daemon in F5 BIG-IP systems 10.x before 10.2.4 HF12, 11.x before 11.2.1 … | Jun 8, 2017 | May 13, 2026 |
| | CVE-2017-6131 | F5 | critical | 9.8 | 0.8%
| | In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and 13.0.0 Azure cloud instance may con… | May 23, 2017 | May 13, 2026 |
| | CVE-2016-7476 | F5 | high | 7.5 | 1.2%
| | The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, APM, ASM, GTM, Link Controller,… | May 11, 2017 | May 13, 2026 |
| | CVE-2016-9250 | F5 | high | 7.5 | 0.6%
| | In F5 BIG-IP 11.2.1, 11.4.0 through 11.6.1, and 12.0.0 through 12.1.2, an unauthenticated user with … | May 10, 2017 | May 13, 2026 |
| | CVE-2017-6137 | F5 | medium | 5.9 | 0.7%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, … | May 9, 2017 | May 13, 2026 |
| | CVE-2017-0302 | F5 | medium | 5.3 | 0.3%
| | In F5 BIG-IP APM 12.0.0 through 12.1.2 and 13.0.0, an authenticated user with an established access … | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9257 | F5 | medium | 6.1 | 0.3%
| | In F5 BIG-IP APM 12.0.0 through 12.1.2, non-authenticated users may be able to inject JavaScript int… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9256 | F5 | high | 7.5 | 0.2%
| | In F5 BIG-IP 12.1.0 through 12.1.2, permissions enforced by iControl can lag behind the actual permi… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9253 | F5 | high | 7.5 | 0.8%
| | In F5 BIG-IP 12.1.0 through 12.1.2, specific websocket traffic patterns may cause a disruption of se… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9251 | F5 | high | 8.8 | 0.5%
| | In F5 BIG-IP 12.0.0 through 12.1.2, an authenticated attacker may be able to cause an escalation of … | May 9, 2017 | May 13, 2026 |
| | CVE-2017-6128 | F5 | high | 7.5 | 0.9%
| | An attacker may be able to cause a denial-of-service (DoS) attack against the sshd component in F5 B… | May 1, 2017 | May 13, 2026 |
| | CVE-2016-7467 | F5 | medium | 5.3 | 1.6%
| | The TMM SSO plugin in F5 BIG-IP APM 12.0.0 - 12.1.1, 11.6.0 - 11.6.1 HF1, 11.5.4 - 11.5.4 HF2, when … | Apr 11, 2017 | May 13, 2026 |
| | CVE-2017-6130 | F5 | high | 7.4 | 0.3%
| | F5 SSL Intercept iApp 1.5.0 - 1.5.7 and SSL Orchestrator 2.0 is vulnerable to a Server-Side Request … | Apr 6, 2017 | May 13, 2026 |
| | CVE-2017-0305 | F5 | critical | 9.8 | 2.9%
| | F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that … | Apr 6, 2017 | May 13, 2026 |
| | CVE-2016-9252 | F5 | high | 7.5 | 1.2%
| | The Traffic Management Microkernel (TMM) in F5 BIG-IP before 11.5.4 HF3, 11.6.x before 11.6.1 HF2 an… | Mar 27, 2017 | May 13, 2026 |
| | CVE-2016-7474 | F5 | medium | 5.5 | 0.1%
| | In some cases the MCPD binary cache in F5 BIG-IP devices may allow a user with Advanced Shell access… | Mar 27, 2017 | May 13, 2026 |
| | CVE-2016-7468 | F5 | medium | 5.9 | 0.9%
| | An unauthenticated remote attacker may be able to disrupt services on F5 BIG-IP 11.4.1 - 11.5.4 devi… | Mar 23, 2017 | May 13, 2026 |
| | CVE-2016-9245 | F5 | medium | 5.9 | 0.7%
| | In F5 BIG-IP systems 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profil… | Mar 7, 2017 | May 13, 2026 |
| | CVE-2016-6249 | F5 | medium | 5.3 | 0.1%
| | F5 BIG-IP 12.0.0 and 11.5.0 - 11.6.1 REST requests which timeout during user account authentication … | Feb 20, 2017 | May 13, 2026 |
| | CVE-2016-9244 | F5 | high | 7.5 | 67.5%
| | A BIG-IP virtual server configured with a Client SSL profile that has the non-default Session Ticket… | Feb 9, 2017 | May 13, 2026 |
| | CVE-2016-9249 | F5 | high | 7.5 | 0.8%
| | An undisclosed traffic pattern received by a BIG-IP Virtual Server with TCP Fast Open enabled may ca… | Jan 31, 2017 | May 13, 2026 |
| | CVE-2016-9247 | F5 | medium | 5.9 | 0.8%
| | Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile… | Jan 10, 2017 | May 6, 2026 |
| | CVE-2016-5024 | F5 | medium | 5.9 | 1.7%
| | Virtual servers in F5 BIG-IP systems 11.6.1 before 11.6.1 HF1 and 12.1.x before 12.1.2, when configu… | Jan 3, 2017 | May 6, 2026 |
| | CVE-2016-1247 | F5 | high | 7.8 | 9.8%
| | The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6… | Nov 29, 2016 | May 6, 2026 |
| | CVE-2016-5745 | F5 | critical | 9.8 | 3.9%
| | F5 BIG-IP LTM systems 11.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF11, 11.5.0, 11.5.1 bef… | Oct 5, 2016 | May 6, 2026 |
| | CVE-2016-5700 | F5 | critical | 9.8 | 5.6%
| | Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, … | Oct 3, 2016 | May 6, 2026 |