F5 Products Multiple Vulnerabilities
Release Date:
6 Feb 2025
382
Views
RISK: Medium Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities were identified in F5 Products, attacker can exploit this vulnerability to trigger remote code execution, denial of service condition, sensitive information disclosure and security restriction bypass on the targeted system.
Impact
- Information Disclosure
- Denial of Service
- Security Restriction Bypass
- Remote Code Execution
System / Technologies affected
BIG-IP (all modules)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.5
- 17.1.0 - 17.1.2
BIG-IP (PEM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.4
- 17.1.0 - 17.1.1
BIG-IP (ASM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.4
- 17.1.0 - 17.1.1
BIG-IP (AFM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.5
- 17.1.0 - 17.1.1
BIG-IP (APM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.4
- 17.1.0 - 17.1.1
BIG-IP Next SPK
- 1.7.0 - 1.7.6
- 1.8.0 - 1.8.2
- 1.9.0
BIG-IP Next Central Manager
- 20.2.0 - 20.2.1
BIG-IP Next CNF
- 1.1.0 - 1.3.3
NGINX Plus
- R28 - R33
NGINX Open Source
- 1.11.4 - 1.27.3
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://my.f5.com/manage/s/article/K000134888
- https://my.f5.com/manage/s/article/K000138757
- https://my.f5.com/manage/s/article/K000138932
- https://my.f5.com/manage/s/article/K000139656
- https://my.f5.com/manage/s/article/K000139778
- https://my.f5.com/manage/s/article/K000139780
- https://my.f5.com/manage/s/article/K000140578
- https://my.f5.com/manage/s/article/K000140920
- https://my.f5.com/manage/s/article/K000140933
- https://my.f5.com/manage/s/article/K000140947
- https://my.f5.com/manage/s/article/K000140950
- https://my.f5.com/manage/s/article/K000141003
- https://my.f5.com/manage/s/article/K000141380
- https://my.f5.com/manage/s/article/K000148412
- https://my.f5.com/manage/s/article/K000148587
- https://my.f5.com/manage/s/article/K000149173
- https://my.f5.com/manage/s/article/K000149185
- https://my.f5.com/manage/s/article/K000149540
Vulnerability Identifier
- CVE-2014-0064
- CVE-2014-0065
- CVE-2014-0066
- CVE-2014-0067
- CVE-2019-5010
- CVE-2019-16056
- CVE-2022-26488
- CVE-2024-36242
- CVE-2024-38660
- CVE-2024-56337
- CVE-2025-20029
- CVE-2025-20045
- CVE-2025-20058
- CVE-2025-21087
- CVE-2025-21091
- CVE-2025-22846
- CVE-2025-22891
- CVE-2025-23239
- CVE-2025-23412
- CVE-2025-23413
- CVE-2025-23415
- CVE-2025-23419
- CVE-2025-24312
- CVE-2025-24319
- CVE-2025-24320
- CVE-2025-24326
- CVE-2025-24497
Source
Related Link
- https://my.f5.com/manage/s/article/K000134888
- https://my.f5.com/manage/s/article/K000138757
- https://my.f5.com/manage/s/article/K000138932
- https://my.f5.com/manage/s/article/K000139656
- https://my.f5.com/manage/s/article/K000139778
- https://my.f5.com/manage/s/article/K000139780
- https://my.f5.com/manage/s/article/K000140578
- https://my.f5.com/manage/s/article/K000140920
- https://my.f5.com/manage/s/article/K000140933
- https://my.f5.com/manage/s/article/K000140947
- https://my.f5.com/manage/s/article/K000140950
- https://my.f5.com/manage/s/article/K000141003
- https://my.f5.com/manage/s/article/K000141380
- https://my.f5.com/manage/s/article/K000148412
- https://my.f5.com/manage/s/article/K000148587
- https://my.f5.com/manage/s/article/K000149173
- https://my.f5.com/manage/s/article/K000149185
- https://my.f5.com/manage/s/article/K000149540
Related Tags
Share with