Vulnerabilities in F5
404 resultsCVE-2026-34176HIGHKnowledge Appliance mode iControl REST vulnerabilityEPSS 0.7%CVE-2019-6658—On BIG-IP AFM 15.0.0-15.0.1, 14.0.0-14.1.2, 13.1.0-13.1.3.1, and 12.1.0-12.1.5, a vulnerability in the AFM configuration utility may allow aEPSS 0.7%CVE-2019-6639—On BIG-IP (AFM, PEM) 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.1-11.5.8, an undisclosed TMEPSS 0.7%CVE-2026-40701MEDIUMNGINX ngx_http_ssl_module vulnerabilityEPSS 0.7%CVE-2022-26415HIGHOn F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior EPSS 0.7%CVE-2022-35245HIGHBIG-IP APM access policy vulnerability CVE-2022-35245EPSS 0.7%CVE-2022-33203HIGHBIG-IP APM and F5 SSL Orchestrator vulnerability CVE-2022-33203EPSS 0.7%CVE-2022-34655HIGHTMM vulnerability CVE-2022-34655EPSS 0.7%CVE-2022-35236HIGHHTTP2 profile vulnerability CVE-2022-35236EPSS 0.7%CVE-2022-34651HIGHBIG-IP TLS 1.3 iRule vulnerability CVE-2022-34651EPSS 0.7%CVE-2022-35240HIGHBIG-IP Message Routing MQTT vulnerability CVE-2022-35240EPSS 0.7%CVE-2023-22323HIGHBIG-IP SSL OCSP Authentication profile vulnerabilityEPSS 0.7%CVE-2022-34851MEDIUMBIG-IP and BIG-IQ iControl SOAP vulnerability CVE-2022-34851EPSS 0.6%CVE-2022-35241MEDIUMNGINX Instance Manager vulnerability CVE-2022-35241EPSS 0.6%CVE-2019-6657—On BIG-IP 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, a reflected cross-site scripting (XSS) vulnerability exists in an undisclosedEPSS 0.6%CVE-2024-39792HIGHNGINX Plus MQTT vulnerabilityEPSS 0.6%CVE-2022-34844MEDIUMBIG-IP and BIG-IQ AWS vulnerability CVE-2022-34844EPSS 0.6%CVE-2023-22340HIGHBIG-IP SIP profile vulnerabilityEPSS 0.6%CVE-2023-22422HIGHHTTP profile vulnerabilityEPSS 0.6%CVE-2023-23555HIGHBIG-IP Virtual Edition vulnerabilityEPSS 0.6%