CVE-2021-22986

KEV
Published: Mar 31, 2021 Last Modified: Ott 27, 2025
ExploitDB:
Other exploit source:
Google Dorks:
CRITICAL 9,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
HIGH 10,0
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: none
Confidentiality: complete
Integrity: complete
Availability: complete

Description

AI Translation Available

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.1.x before 12.1.5.3 amd BIG-IQ 7.1.0.x before 7.1.0.3 and 7.0.0.x before 7.0.0.2, the iControl REST interface has an unauthenticated remote command execution vulnerability. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,9449
Percentile
1,0th
Updated

EPSS Score Trend (Last 90 Days)

918

Server-Side Request Forgery (SSRF)

Incomplete
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality Integrity Access Control
Potential Impacts:
Read Application Data Execute Unauthorized Code Or Commands Bypass Protection Mechanism
Applicable Platforms
Technologies: AI/ML, Web Based, Web Server
View CWE Details
Exploit

F5 BIG-IP 16.0.x - iControl REST Remote Code …

F5 BIG-IP 16.0.x - iControl REST Remote Code Execution (Unauthenticated)

Author: Al1ex Published:
View Exploit Code →
Application

Big-Ip Global Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Global Traffic Manager
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Ddos Hybrid Defender by F5

Product Information
Vendor F5
Product Big-Ip Ddos Hybrid Defender
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Firewall Manager by F5

Product Information
Vendor F5
Product Big-Ip Advanced Firewall Manager
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Link Controller by F5

Product Information
Vendor F5
Product Big-Ip Link Controller
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Local Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Local Traffic Manager
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Web Application Firewall by F5

Product Information
Vendor F5
Product Big-Ip Advanced Web Application Firewall
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Access Policy Manager by F5

Product Information
Vendor F5
Product Big-Ip Access Policy Manager
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Ssl Orchestrator by F5

Product Information
Vendor F5
Product Ssl Orchestrator
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:ssl_orchestrator:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Link Controller by F5

Product Information
Vendor F5
Product Big-Ip Link Controller
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Domain Name System by F5

Product Information
Vendor F5
Product Big-Ip Domain Name System
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Ddos Hybrid Defender by F5

Product Information
Vendor F5
Product Big-Ip Ddos Hybrid Defender
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Security Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Security Manager
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Ssl Orchestrator by F5

Product Information
Vendor F5
Product Ssl Orchestrator
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:ssl_orchestrator:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Web Application Firewall by F5

Product Information
Vendor F5
Product Big-Ip Advanced Web Application Firewall
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Global Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Global Traffic Manager
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Ddos Hybrid Defender by F5

Product Information
Vendor F5
Product Big-Ip Ddos Hybrid Defender
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Policy Enforcement Manager by F5

Product Information
Vendor F5
Product Big-Ip Policy Enforcement Manager
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Policy Enforcement Manager by F5

Product Information
Vendor F5
Product Big-Ip Policy Enforcement Manager
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Link Controller by F5

Product Information
Vendor F5
Product Big-Ip Link Controller
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Analytics by F5

Product Information
Vendor F5
Product Big-Ip Analytics
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Link Controller by F5

Product Information
Vendor F5
Product Big-Ip Link Controller
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Security Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Security Manager
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Acceleration Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Acceleration Manager
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Iq Centralized Management by F5

Product Information
Vendor F5
Product Big-Iq Centralized Management
Version Range Affected
From 6.0.0 (inclusive)
To 6.1.0 (exclusive)
cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Acceleration Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Acceleration Manager
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Link Controller by F5

Product Information
Vendor F5
Product Big-Ip Link Controller
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Local Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Local Traffic Manager
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Global Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Global Traffic Manager
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Web Application Firewall by F5

Product Information
Vendor F5
Product Big-Ip Advanced Web Application Firewall
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Fraud Protection Service by F5

Product Information
Vendor F5
Product Big-Ip Fraud Protection Service
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Ssl Orchestrator by F5

Product Information
Vendor F5
Product Ssl Orchestrator
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:ssl_orchestrator:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Iq Centralized Management by F5

Product Information
Vendor F5
Product Big-Iq Centralized Management
Version Range Affected
From 7.0.0 (inclusive)
To 7.0.0.2 (exclusive)
cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Analytics by F5

Product Information
Vendor F5
Product Big-Ip Analytics
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Web Application Firewall by F5

Product Information
Vendor F5
Product Big-Ip Advanced Web Application Firewall
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Ssl Orchestrator by F5

Product Information
Vendor F5
Product Ssl Orchestrator
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:ssl_orchestrator:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Access Policy Manager by F5

Product Information
Vendor F5
Product Big-Ip Access Policy Manager
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Policy Enforcement Manager by F5

Product Information
Vendor F5
Product Big-Ip Policy Enforcement Manager
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Domain Name System by F5

Product Information
Vendor F5
Product Big-Ip Domain Name System
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Acceleration Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Acceleration Manager
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Security Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Security Manager
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Fraud Protection Service by F5

Product Information
Vendor F5
Product Big-Ip Fraud Protection Service
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Policy Enforcement Manager by F5

Product Information
Vendor F5
Product Big-Ip Policy Enforcement Manager
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Local Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Local Traffic Manager
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Domain Name System by F5

Product Information
Vendor F5
Product Big-Ip Domain Name System
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Ddos Hybrid Defender by F5

Product Information
Vendor F5
Product Big-Ip Ddos Hybrid Defender
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Acceleration Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Acceleration Manager
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Security Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Security Manager
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Access Policy Manager by F5

Product Information
Vendor F5
Product Big-Ip Access Policy Manager
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Local Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Local Traffic Manager
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Fraud Protection Service by F5

Product Information
Vendor F5
Product Big-Ip Fraud Protection Service
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Access Policy Manager by F5

Product Information
Vendor F5
Product Big-Ip Access Policy Manager
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Security Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Security Manager
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Ddos Hybrid Defender by F5

Product Information
Vendor F5
Product Big-Ip Ddos Hybrid Defender
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Local Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Local Traffic Manager
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Analytics by F5

Product Information
Vendor F5
Product Big-Ip Analytics
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Global Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Global Traffic Manager
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Fraud Protection Service by F5

Product Information
Vendor F5
Product Big-Ip Fraud Protection Service
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Global Traffic Manager by F5

Product Information
Vendor F5
Product Big-Ip Global Traffic Manager
Version Range Affected
From 16.0.0 (inclusive)
To 16.0.1.1 (exclusive)
cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Analytics by F5

Product Information
Vendor F5
Product Big-Ip Analytics
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Ssl Orchestrator by F5

Product Information
Vendor F5
Product Ssl Orchestrator
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:ssl_orchestrator:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Policy Enforcement Manager by F5

Product Information
Vendor F5
Product Big-Ip Policy Enforcement Manager
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Domain Name System by F5

Product Information
Vendor F5
Product Big-Ip Domain Name System
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Fraud Protection Service by F5

Product Information
Vendor F5
Product Big-Ip Fraud Protection Service
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Web Application Firewall by F5

Product Information
Vendor F5
Product Big-Ip Advanced Web Application Firewall
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Firewall Manager by F5

Product Information
Vendor F5
Product Big-Ip Advanced Firewall Manager
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Application Acceleration Manager by F5

Product Information
Vendor F5
Product Big-Ip Application Acceleration Manager
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Firewall Manager by F5

Product Information
Vendor F5
Product Big-Ip Advanced Firewall Manager
Version Range Affected
From 15.1.0 (inclusive)
To 15.1.2.1 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Analytics by F5

Product Information
Vendor F5
Product Big-Ip Analytics
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Iq Centralized Management by F5

Product Information
Vendor F5
Product Big-Iq Centralized Management
Version Range Affected
From 7.1.0 (inclusive)
To 7.1.0.3 (exclusive)
cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Firewall Manager by F5

Product Information
Vendor F5
Product Big-Ip Advanced Firewall Manager
Version Range Affected
From 12.1.0 (inclusive)
To 12.1.5.3 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Domain Name System by F5

Product Information
Vendor F5
Product Big-Ip Domain Name System
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Access Policy Manager by F5

Product Information
Vendor F5
Product Big-Ip Access Policy Manager
Version Range Affected
From 14.1.0 (inclusive)
To 14.1.4 (exclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Big-Ip Advanced Firewall Manager by F5

Product Information
Vendor F5
Product Big-Ip Advanced Firewall Manager
Version Range Affected
From 13.1.0 (inclusive)
To 13.1.3.6 (exclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalo…
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021…
http://packetstormsecurity.com/files/162059/F5-iControl-Ser…
http://packetstormsecurity.com/files/162059/F5-iControl-Server-Side-Request-For…
http://packetstormsecurity.com/files/162066/F5-BIG-IP-16.0.…
http://packetstormsecurity.com/files/162066/F5-BIG-IP-16.0.x-Remote-Code-Execut…
https://support.f5.com/csp/article/K03009991
https://support.f5.com/csp/article/K03009991
http://packetstormsecurity.com/files/162059/F5-iControl-Ser…
http://packetstormsecurity.com/files/162059/F5-iControl-Server-Side-Request-For…
http://packetstormsecurity.com/files/162066/F5-BIG-IP-16.0.…
http://packetstormsecurity.com/files/162066/F5-BIG-IP-16.0.x-Remote-Code-Execut…
https://support.f5.com/csp/article/K03009991
https://support.f5.com/csp/article/K03009991