F5 Big-IP Advanced Firewall Manager (AFM) 17.5.0
Approved changes feed: RSS · Atom
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:17.5.0:*:*:*:*:*:*:*
part: a version: 17.5.0 update: *
| Vendor | F5 (cb05c4a2-e02e-586f-b9d0-d0370178d1e5) |
|---|---|
| Product | Big Ip Advanced Firewall Manager (e9b9e21c-996b-5ec4-9014-0661575a4d57) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-61951 |
vulnerable | 2026-06-03 15:07:57.517589 |
BIG-IP DTLS 1.2 Vulnerability
HIGH (7.5)
Undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. This issue may occur when a Datagram Transport Layer Security (DTLS) 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hash set to ANY, and the backend server is enabled with DTLS 1.2 and client authentication. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2025-10-15T13:55:50.364Z
Updated: 2026-02-26T16:57:40.404Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-59478 |
vulnerable | 2026-06-03 15:06:25.237800 |
BIG-IP AFM DoS protection profile vulnerability
HIGH (7.5)
When a BIG-IP AFM denial-of-service (DoS) protection profile is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) process to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2025-10-15T13:55:43.732Z
Updated: 2026-02-26T16:57:49.234Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-58153 |
vulnerable | 2026-06-03 15:06:20.789849 |
BIG-IP HSB vulnerability
MEDIUM (5.9)
Under undisclosed traffic conditions along with conditions beyond the attacker's control, hardware systems with a High-Speed Bridge (HSB) may experience a lockup of the HSB.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2025-10-15T13:55:44.577Z
Updated: 2026-02-26T16:57:48.314Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-58071 |
vulnerable | 2026-06-03 15:06:20.549867 |
BIG-IP IPSec vulnerability
HIGH (7.5)
When IPsec is configured on the BIG-IP system, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2025-10-15T15:19:46.470Z
Updated: 2026-02-26T16:57:31.722Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2002-20001 |
vulnerable | 2026-06-03 14:26:22.859819 |
Details available
The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE.
Published: 2021-11-11T00:00:00.000Z
Updated: 2025-02-13T16:27:06.803Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.