| | CVE-2017-6157 | F5 | high | 8.1 | 6.9%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-0303 | F5 | high | 7.5 | 2.4%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software… | Oct 27, 2017 | May 13, 2026 |
| | CVE-2017-6165 | F5 | critical | 9.8 | 2.0%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 … | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6145 | F5 | high | 7.3 | 0.4%
| | iControl REST in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSaf… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6144 | F5 | high | 7.4 | 0.2%
| | In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6141 | F5 | medium | 5.9 | 0.6%
| | In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and WebSafe 12.1.0 through 12.1.2, certa… | Oct 20, 2017 | May 13, 2026 |
| | CVE-2017-6147 | F5 | medium | 5.9 | 0.7%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.1.2-HF1 a… | Sep 18, 2017 | May 13, 2026 |
| | CVE-2017-7529 | F5 | high | 7.5 | 91.9%
| | Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerabili… | Jul 13, 2017 | May 13, 2026 |
| | CVE-2016-7469 | F5 | medium | 5.4 | 0.3%
| | A stored cross-site scripting (XSS) vulnerability in the Configuration utility device name change pa… | Jun 9, 2017 | May 13, 2026 |
| | CVE-2014-6031 | F5 | medium | 4.9 | 0.5%
| | Buffer overflow in the mcpq daemon in F5 BIG-IP systems 10.x before 10.2.4 HF12, 11.x before 11.2.1 … | Jun 8, 2017 | May 13, 2026 |
| | CVE-2017-6131 | F5 | critical | 9.8 | 0.8%
| | In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and 13.0.0 Azure cloud instance may con… | May 23, 2017 | May 13, 2026 |
| | CVE-2016-7476 | F5 | high | 7.5 | 1.2%
| | The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, APM, ASM, GTM, Link Controller,… | May 11, 2017 | May 13, 2026 |
| | CVE-2016-9250 | F5 | high | 7.5 | 0.6%
| | In F5 BIG-IP 11.2.1, 11.4.0 through 11.6.1, and 12.0.0 through 12.1.2, an unauthenticated user with … | May 10, 2017 | May 13, 2026 |
| | CVE-2017-6137 | F5 | medium | 5.9 | 0.7%
| | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, … | May 9, 2017 | May 13, 2026 |
| | CVE-2017-0302 | F5 | medium | 5.3 | 0.3%
| | In F5 BIG-IP APM 12.0.0 through 12.1.2 and 13.0.0, an authenticated user with an established access … | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9257 | F5 | medium | 6.1 | 0.3%
| | In F5 BIG-IP APM 12.0.0 through 12.1.2, non-authenticated users may be able to inject JavaScript int… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9256 | F5 | high | 7.5 | 0.2%
| | In F5 BIG-IP 12.1.0 through 12.1.2, permissions enforced by iControl can lag behind the actual permi… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9253 | F5 | high | 7.5 | 0.8%
| | In F5 BIG-IP 12.1.0 through 12.1.2, specific websocket traffic patterns may cause a disruption of se… | May 9, 2017 | May 13, 2026 |
| | CVE-2016-9251 | F5 | high | 8.8 | 0.5%
| | In F5 BIG-IP 12.0.0 through 12.1.2, an authenticated attacker may be able to cause an escalation of … | May 9, 2017 | May 13, 2026 |
| | CVE-2017-6128 | F5 | high | 7.5 | 0.9%
| | An attacker may be able to cause a denial-of-service (DoS) attack against the sshd component in F5 B… | May 1, 2017 | May 13, 2026 |
| | CVE-2016-7467 | F5 | medium | 5.3 | 1.6%
| | The TMM SSO plugin in F5 BIG-IP APM 12.0.0 - 12.1.1, 11.6.0 - 11.6.1 HF1, 11.5.4 - 11.5.4 HF2, when … | Apr 11, 2017 | May 13, 2026 |
| | CVE-2017-6130 | F5 | high | 7.4 | 0.3%
| | F5 SSL Intercept iApp 1.5.0 - 1.5.7 and SSL Orchestrator 2.0 is vulnerable to a Server-Side Request … | Apr 6, 2017 | May 13, 2026 |
| | CVE-2017-0305 | F5 | critical | 9.8 | 2.9%
| | F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that … | Apr 6, 2017 | May 13, 2026 |
| | CVE-2016-9252 | F5 | high | 7.5 | 1.2%
| | The Traffic Management Microkernel (TMM) in F5 BIG-IP before 11.5.4 HF3, 11.6.x before 11.6.1 HF2 an… | Mar 27, 2017 | May 13, 2026 |
| | CVE-2016-7474 | F5 | medium | 5.5 | 0.1%
| | In some cases the MCPD binary cache in F5 BIG-IP devices may allow a user with Advanced Shell access… | Mar 27, 2017 | May 13, 2026 |
| | CVE-2016-7468 | F5 | medium | 5.9 | 0.9%
| | An unauthenticated remote attacker may be able to disrupt services on F5 BIG-IP 11.4.1 - 11.5.4 devi… | Mar 23, 2017 | May 13, 2026 |
| | CVE-2016-9245 | F5 | medium | 5.9 | 0.7%
| | In F5 BIG-IP systems 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profil… | Mar 7, 2017 | May 13, 2026 |
| | CVE-2016-6249 | F5 | medium | 5.3 | 0.1%
| | F5 BIG-IP 12.0.0 and 11.5.0 - 11.6.1 REST requests which timeout during user account authentication … | Feb 20, 2017 | May 13, 2026 |
| | CVE-2016-9244 | F5 | high | 7.5 | 67.5%
| | A BIG-IP virtual server configured with a Client SSL profile that has the non-default Session Ticket… | Feb 9, 2017 | May 13, 2026 |
| | CVE-2016-9249 | F5 | high | 7.5 | 0.8%
| | An undisclosed traffic pattern received by a BIG-IP Virtual Server with TCP Fast Open enabled may ca… | Jan 31, 2017 | May 13, 2026 |
| | CVE-2016-9247 | F5 | medium | 5.9 | 0.8%
| | Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile… | Jan 10, 2017 | May 6, 2026 |
| | CVE-2016-5024 | F5 | medium | 5.9 | 1.7%
| | Virtual servers in F5 BIG-IP systems 11.6.1 before 11.6.1 HF1 and 12.1.x before 12.1.2, when configu… | Jan 3, 2017 | May 6, 2026 |
| | CVE-2016-1247 | F5 | high | 7.8 | 9.8%
| | The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6… | Nov 29, 2016 | May 6, 2026 |
| | CVE-2016-5745 | F5 | critical | 9.8 | 3.9%
| | F5 BIG-IP LTM systems 11.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF11, 11.5.0, 11.5.1 bef… | Oct 5, 2016 | May 6, 2026 |
| | CVE-2016-5700 | F5 | critical | 9.8 | 5.6%
| | Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, … | Oct 3, 2016 | May 6, 2026 |
| | CVE-2016-6876 | F5 | high | 7.5 | 0.7%
| | The RESOLV::lookup iRule command in F5 BIG-IP LTM, APM, ASM, and Link Controller 10.2.1 through 10.2… | Sep 7, 2016 | May 6, 2026 |
| | CVE-2016-5022 | F5 | critical | 9.8 | 3.1%
| | F5 BIG-IP LTM, Analytics, APM, ASM, and Link Controller 11.2.x before 11.2.1 HF16, 11.3.x, 11.4.x, 1… | Sep 7, 2016 | May 6, 2026 |
| | CVE-2016-5023 | F5 | high | 7.5 | 3.0%
| | Virtual servers in F5 BIG-IP systems 11.2.1 HF11 through HF15, 11.4.1 HF4 through HF10, 11.5.3 throu… | Aug 26, 2016 | May 6, 2026 |
| | CVE-2016-1497 | F5 | medium | 4.9 | 0.2%
| | The Configuration utility in F5 BIG-IP systems 11.0.x, 11.1.x, 11.2.x before 11.2.1 HF16, 11.3.x, 11… | Aug 26, 2016 | May 6, 2026 |
| | CVE-2016-5736 | F5 | high | 7.5 | 1.1%
| | The default configuration of the IPsec IKE peer listener in F5 BIG-IP LTM, Analytics, APM, ASM, and … | Aug 19, 2016 | May 6, 2026 |
| | CVE-2015-8022 | F5 | high | 7.5 | 0.5%
| | The Configuration utility in F5 BIG-IP LTM, Analytics, APM, ASM, GTM, and Link Controller 11.x befor… | Aug 19, 2016 | May 6, 2026 |
| | CVE-2015-5738 | F5 | high | 7.5 | 0.8%
| | The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II … | Jul 26, 2016 | May 6, 2026 |
| | CVE-2016-5020 | F5 | high | 8.8 | 1.8%
| | F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to modify the account configuration of… | Jun 30, 2016 | May 6, 2026 |
| | CVE-2016-5021 | F5 | medium | 4.9 | 0.2%
| | The iControl REST service in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM … | Jun 24, 2016 | May 6, 2026 |
| | CVE-2016-3687 | F5 | medium | 5.3 | 0.4%
| | Open redirect vulnerability in F5 BIG-IP APM 11.2.1, 11.4.x, 11.5.x, and 11.6.x before 11.6.0 HF6 an… | Jun 16, 2016 | May 6, 2026 |
| | CVE-2016-4545 | F5 | high | 7.5 | 1.2%
| | Virtual servers in F5 BIG-IP 11.5.4, when SSL profiles are enabled, allow remote attackers to cause … | Jun 7, 2016 | May 6, 2026 |
| | CVE-2016-4450 | F5 | high | 7.5 | 3.5%
| | os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to cause… | Jun 7, 2016 | May 6, 2026 |
| | CVE-2015-8099 | F5 | medium | 5.9 | 1.0%
| | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 HF10,… | May 13, 2016 | May 6, 2026 |
| | CVE-2016-3686 | F5 | medium | 5.9 | 0.5%
| | The Single Sign-On (SSO) feature in F5 BIG-IP APM 11.x before 11.6.0 HF6 and BIG-IP Edge Gateway 11.… | Apr 13, 2016 | May 6, 2026 |
| | CVE-2016-2084 | F5 | high | 7.4 | 0.5%
| | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 build… | Apr 13, 2016 | May 6, 2026 |