Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how f5 compares to other vendors in security performance

View Risk Score →

Software

f5 big-ip advanced firewall manager
11
f5 big-ip analytics
11
f5 big-ip application acceleration manager
11
f5 big-ip link controller
11
f5 big-ip policy enforcement manager
11
f5 big-ip
10
f5 big-iq centralized management
10
f5 big-ip access policy manager
8
f5 big-ip next central manager
8
f5 big-ip application security manager
7
f5 big-ip global traffic manager
7
f5 big-ip local traffic manager
7
f5 big-ip webaccelerator
7
f5 big-ip ddos hybrid defender
6
f5 big-ip fraud protection service
6
f5 big-ip ssl orchestrator
6
f5 access policy manager
4
f5 application security manager
4
f5 big-ip and big-iq centralized management
4
f5 big-ip domain name system
4
f5 big-ip edge gateway
4
f5 enterprise manager
4
f5 big-ip advanced waf/asm
3
f5 big-ip advanced web application firewall
3
f5 big-ip application visibility and reporting
3
f5 big-ip carrier-grade nat
3
f5 big-ip next
3
f5 big-ip protocol security module
3
f5 big-ip wan optimization manager
3
f5 big-ip websafe
3
f5 big-iq cloud
3
f5 big-iq device
3
f5 big-iq security
3
f5 traffix sdc
3
f5 traffix signaling delivery controller
3
f5 arx
2
f5 arx firmware
2
f5 big-ip apm
2
f5 big-ip automation toolchain
2
f5 big-ip configuration utility
2
f5 big-ip container ingress services
2
f5 big-ip fraud protection services
2
f5 big-ip next spk
2
f5 big-iq cloud and orchestration
2
f5 f5os-a
2
f5 f5os-c
2
f5 nginx open source
2
f5 big-ip (apm)
1
f5 big-ip next cnf
1
f5 big-ip next service proxy for kubernetes
1

BleepingComputer18-year-old NGINX vulnerability allows DoS, potential RCE

Exploited
First published (updated )
News
BleepingComputer

BleepingComputerOver 14,000 F5 BIG-IP APM instances still exposed to RCE attacks

Exploited
First published (updated )
News
BleepingComputer

F5 BIG-IP Access Policy ManagerF5 BIG-IP Unspecified Vulnerability

Risk 99
Severity
9.3
Exploited
First published (updated )
CVE-2025-53521

go/k8s.io/ingress-nginxingress-nginx controller - configuration injection via unsanitized auth-url annotation

Risk 95
Severity
8.8
Exploited
First published (updated )
CVE-2025-24514

go/k8s.io/ingress-nginxingress-nginx controller - configuration injection via unsanitized auth-tls-match-cn annotation

Risk 95
Severity
8.8
Exploited
First published (updated )
CVE-2025-1097
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

go/k8s.io/ingress-nginxingress-nginx controller - configuration injection via unsanitized mirror annotations

Risk 95
Severity
8.8
Exploited
First published (updated )
CVE-2025-1098

go/k8s.io/ingress-nginxingress-nginx admission controller RCE escalation

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2025-1974

Apache TomcatApache Tomcat Path Equivalence Vulnerability

Risk 90
Severity
10
Exploited
Zeroday
EPSS
0.04%
First published (updated )
CVE-2025-24813

Microsoft cbl2 postgresql 14.14-1PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation

Risk 92
Severity
8.1
Exploited
Zeroday
First published (updated )
CVE-2025-1094

OpenBSD OpenSSHPre-authentication Denial of Service attack in OpenSSH - CVE-2025-26466

Risk 65
Severity
7.5
Exploited
EPSS
23.44%
First published (updated )
CVE-2025-26466
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

debian/rsyncRsync: race condition in rsync handling symbolic links

Risk 65
Severity
5.6
Exploited
First published (updated )
CVE-2024-12747

redhat Enterprise LinuxRsync: --safe-links option bypass leads to path traversal

Risk 65
Severity
7.5
Exploited
First published (updated )
CVE-2024-12088

AlmaLinux AlmalinuxRsync: path traversal vulnerability in rsync

Risk 65
Severity
7.5
Exploited
First published (updated )
CVE-2024-12087

redhat Enterprise LinuxRsync: rsync server leaks arbitrary client files

Risk 65
Severity
6.8
Exploited
First published (updated )
CVE-2024-12086

redhat Enterprise Linux Server For Power Little Endian Update Services For Sap SolutionsRsync: info leak via uninitialized stack contents

Risk 65
Severity
7.5
Exploited
First published (updated )
CVE-2024-12085
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Samba rsyncrsync security updates

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2024-12084

F5 BIG-IPApache HTTP Server Improper Escaping of Output Vulnerability

Risk 76
Severity
9.1
Exploited
First published (updated )
CVE-2024-38475

FreeBSD FreeBSDOpenSSH regreSSHion Attack (CVE-2024-6387)

Risk 92
Severity
8.1
Exploited
EPSS
71.47%
First published (updated )
CVE-2024-6387

Linux Linux kernelAndroid Kernel Remote Code Execution Vulnerability

Risk 91
Severity
7.8
Exploited
First published (updated )
CVE-2024-36971

Microsoft Windows 10PAN-OS: CHAP and PAP When Used with RADIUS Authentication Lead to Privilege Escalation (Severity: MEDIUM)

Risk 96
Severity
5.3
Exploited
First published (updated )
CVE-2024-3596
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Linux Linux kernelFixes in Linux Kernel

Risk 91
Severity
7.8
Exploited
First published (updated )
CVE-2024-1086

F5 BIG-IPBIG-IP Configuration utility authenticated SQL injection vulnerability

Risk 95
Severity
8.8
Exploited
First published (updated )
CVE-2023-46748

F5 BIG-IP Access Policy ManagerBIG-IP Configuration utility unauthenticated remote code execution vulnerability

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2023-46747

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

Risk 65
Severity
7.5
Exploited
Zeroday
First published (updated )
CVE-2023-44487

F5 BIG-IP Access Policy ManagerF5 BIG-IP Missing Authentication Vulnerability

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2022-1388
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat Enterprise Linux Server Ausmod_proxy SSRF

Risk 96
Severity
9
Exploited
First published (updated )
CVE-2021-40438

F5 BIG-IP Access Policy ManagerF5 BIG-IP Traffic Management Microkernel Buffer Overflow

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2021-22991

F5 BIG-IP Access Policy ManagerF5 BIG-IP and BIG-IQ Centralized Management iControl REST Remote Code Execution Vulnerability

Risk 100
Severity
10
Exploited
First published (updated )
CVE-2021-22986

F5 BIG-IP Access Policy ManagerF5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability

Risk 100
Severity
10
Exploited
First published (updated )
CVE-2020-5902

Oracle REST Data ServicesJQuery Cross-Site Scripting (XSS) Vulnerability

Risk 65
Severity
6.9
Exploited
First published (updated )
CVE-2020-11023
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203