F5 BIG-IP Access Policy Manager (APM) 17.1.0
Approved changes feed: RSS · Atom
cpe:2.3:a:f5:big-ip_access_policy_manager:17.1.0:*:*:*:*:*:*:*
part: a version: 17.1.0 update: *
| Vendor | F5 (cb05c4a2-e02e-586f-b9d0-d0370178d1e5) |
|---|---|
| Product | Big Ip Access Policy Manager (78341655-a047-5c86-a17e-6a3bb8e6914c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-41399 |
vulnerable | 2026-06-03 15:01:14.793695 |
SCTP Vulnerability
HIGH (7.5)
When a Stream Control Transmission Protocol (SCTP) profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2025-05-07T22:04:07.220Z
Updated: 2025-05-08T13:23:51.078Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-41727 |
vulnerable | 2026-06-03 14:56:34.841584 |
BIG-IP TMM vulnerability
HIGH (7.5)
In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs) using Intel E810 SR-IOV NIC, undisclosed traffic can cause an increase in memory resource utilization.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2024-08-14T14:32:32.000Z
Updated: 2024-08-14T17:43:47.392Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-41723 |
vulnerable | 2026-06-03 14:56:34.820037 |
BIG-IP iControl REST vulnerability
MEDIUM (4.3)
Undisclosed requests to BIG-IP iControl REST can lead to information leak of user account names. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2024-08-14T14:32:30.852Z
Updated: 2024-08-16T19:06:02.769Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-41164 |
vulnerable | 2026-06-03 14:56:34.177684 |
BIG-IP MPTCP vulnerability
MEDIUM (5.9)
When TCP profile with Multipath TCP enabled (MPTCP) is configured on a Virtual Server, undisclosed traffic along with conditions beyond the attackers control can cause TMM to terminate.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2024-08-14T14:32:31.623Z
Updated: 2024-08-14T14:53:16.759Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-39778 |
vulnerable | 2026-06-03 14:56:22.402973 |
BIG-IP HSB vulnerability
HIGH (7.5)
When a stateless virtual server is configured on BIG-IP system with a High-Speed Bridge (HSB), undisclosed requests can cause TMM to terminate.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2024-08-14T14:32:31.250Z
Updated: 2024-08-14T14:53:18.084Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33608 |
vulnerable | 2026-06-03 14:55:52.697486 |
BIG-IP IPsec vulnerability
HIGH (7.5)
When IPsec is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2024-05-08T15:01:25.289Z
Updated: 2024-08-02T02:36:04.307Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-28883 |
vulnerable | 2026-06-03 14:55:26.106786 |
BIG-IP APM browser network access VPN client vulnerability
HIGH (7.4)
An origin validation vulnerability exists in
BIG-IP APM browser network access VPN client
for Windows, macOS and Linux which may allow an attacker to bypass F5 endpoint inspection.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2024-05-08T15:01:24.931Z
Updated: 2024-08-02T01:03:50.247Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-25560 |
vulnerable | 2026-06-03 14:55:13.616540 |
TMM Vulnerability
HIGH (7.5)
When BIG-IP AFM is licensed and provisioned, undisclosed DNS traffic can cause the Traffic Management Microkernel (TMM) to terminate.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2024-05-08T15:01:25.651Z
Updated: 2024-08-01T23:44:09.627Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-24775 |
vulnerable | 2026-06-03 14:55:05.700894 |
BIG-IP TMM vulnerability
HIGH (7.5)
When a virtual server is enabled with VLAN group and SNAT listener is configured, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2024-02-14T16:30:23.876Z
Updated: 2024-08-16T18:09:20.275Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23979 |
vulnerable | 2026-06-03 14:55:05.018684 |
BIG-IP SSL Client Certificate LDAP and CRLDP Authentication profiles vulnerability
HIGH (7.5)
When SSL Client Certificate LDAP or Certificate Revocation List Distribution Point (CRLDP) authentication profile is configured on a virtual server, undisclosed requests can cause an increase in CPU resource utilization.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2024-02-14T16:30:22.395Z
Updated: 2024-08-01T23:13:08.549Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23976 |
vulnerable | 2026-06-03 14:55:05.011522 |
BIG-IP Appliance mode iAppsLX vulnerability
MEDIUM (6)
When running in Appliance mode, an authenticated attacker assigned the Administrator role may be able to bypass Appliance
mode restrictions utilizing iAppsLX templates on a BIG-IP system. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2024-02-14T16:30:20.173Z
Updated: 2024-08-01T23:13:08.251Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23314 |
vulnerable | 2026-06-03 14:55:02.245593 |
BIG-IP HTTP/2 vulnerability
HIGH (7.5)
When HTTP/2 is configured on BIG-IP or BIG-IP Next SPK systems, undisclosed responses can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2024-02-14T16:30:23.152Z
Updated: 2024-08-27T15:25:06.327Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-22389 |
vulnerable | 2026-06-03 14:55:00.613935 |
BIG-IP iControl REST API Vulnerability
HIGH (7.2)
When BIG-IP is deployed in high availability (HA) and an iControl REST API token is updated, the change does not sync to the peer device.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2024-02-14T16:30:19.797Z
Updated: 2024-08-16T18:11:12.661Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-22093 |
vulnerable | 2026-06-03 14:54:59.660584 |
Appliance mode iControl REST vulnerability
HIGH (8.7)
When running in appliance mode, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint on multi-bladed systems. A successful exploit can allow the attacker to cross a security boundary. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2024-02-14T16:30:22.752Z
Updated: 2025-05-02T15:34:34.574Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21782 |
vulnerable | 2026-06-03 14:54:50.724853 |
BIG-IP and BIG-IQ secure copy vulnerability
MEDIUM (6.7)
BIG-IP or BIG-IQ Resource Administrators and Certificate Managers who have access to the secure copy (scp) utility but do not have access to Advanced shell (bash) can execute arbitrary commands with a specially crafted command string. This vulnerability is due to an incomplete fix for CVE-2020-5873.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2024-02-14T16:30:20.945Z
Updated: 2025-05-12T15:06:26.760Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5450 |
vulnerable | 2026-06-03 14:53:48.674473 |
BIG-IP Edge Client for macOS vulnerability
HIGH (7.3)
An insufficient verification of data vulnerability exists in BIG-IP Edge Client Installer on macOS that may allow an attacker elevation of privileges during the installation process.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2023-10-10T12:31:48.600Z
Updated: 2024-09-13T16:41:55.571Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-44487 |
vulnerable | 2026-06-03 14:53:06.855371 |
Details available
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Published: 2023-10-10T00:00:00.000Z
Updated: 2026-05-12T10:52:23.784Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43125 |
vulnerable | 2026-06-03 14:52:55.317755 |
BIG-IP APM Clients TunnelCrack vulnerability
MEDIUM (6.8)
BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2023-09-27T15:22:07.212Z
Updated: 2024-09-24T13:13:09.724Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43124 |
vulnerable | 2026-06-03 14:52:55.316387 |
BIG-IP APM Clients TunnelCrack vulnerability
MEDIUM (5.3)
BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Published: 2023-09-27T15:21:50.794Z
Updated: 2024-09-23T15:06:23.816Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-40534 |
vulnerable | 2026-06-03 14:52:49.818873 |
BIG-IP HTTP/2 vulnerability
HIGH (7.5)
When a client-side HTTP/2 profile and the HTTP MRF Router option are enabled for a virtual server, and an iRule using the HTTP_REQUEST event or Local Traffic Policy are associated with the virtual server, undisclosed requests can cause TMM to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2023-10-10T12:32:37.830Z
Updated: 2024-09-19T13:48:43.571Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.