CVE-2022-27880

all versions

On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Scripting (XSS) vulnerabil

4.8MEDIUM

CVE-2022-27662

all versions

On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Template Injection vulnera

4.8MEDIUM

CVE-2002-20001

all versions

The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actual

7.5HIGH

CVE-2020-5854

>= 5.0.0 and <= 5.1.0

On BIG-IP 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.0-11.6.5.1, the tmm crashes un

5.9MEDIUM

CVE-2018-16229

>= 5.0.0 and <= 5.1.0

The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option().

7.5HIGH

CVE-2018-14882

>= 5.0.0 and <= 5.1.0

The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.

7.5HIGH

CVE-2018-14880

>= 5.0.0 and <= 5.1.0

The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().

7.5HIGH

CVE-2018-14879

>= 5.0.0 and <= 5.1.0

The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().

7.0HIGH

CVE-2018-14469

>= 5.0.0 and <= 5.1.0

The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().

7.5HIGH

CVE-2018-14468

>= 5.0.0 and <= 5.1.0

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().

7.5HIGH

CVE-2018-14465

>= 5.0.0 and <= 5.1.0

The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

7.5HIGH

CVE-2018-14463

>= 5.0.0 and <= 5.1.0

The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulner

7.5HIGH

CVE-2018-14462

>= 5.0.0 and <= 5.1.0

The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().

7.5HIGH

CVE-2019-16714

>= 5.0.0 and <= 5.1.0

In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kern

7.5HIGH

CVE-2019-13565

all versions

An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the S

7.5HIGH

CVE-2019-13050

>= 5.0.0 and <= 5.1.0

Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to

7.5HIGH

CVE-2019-11479

>= 5.0.0 and <= 5.1.0

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP

7.5HIGH

CVE-2019-11478

>= 5.0.0 and <= 5.1.0

Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmente

5.3MEDIUM

CVE-2019-11477

>= 5.0.0 and <= 5.1.0

Jonathan Looney discovered that the TCP_SKB_CB(skb)-tcp_gso_segs value was subject to an integer overflow in the Linux kernel when

7.5HIGH

CVE-2019-5436

>= 5.0.0 and <= 5.1.0

A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.

7.8HIGH

CVE-2018-20836

all versions

An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in d

8.1HIGH

CVE-2019-1559

>= 5.0.0 and <= 5.1.0

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to

5.9MEDIUM

CVE-2019-9077

>= 5.0.0 and <= 5.1.0

An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in process_mips_specific in readelf.c via a malfo

7.8HIGH

CVE-2019-9070

>= 5.0.0 and <= 5.1.0

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression

7.8HIGH

CVE-2018-1320

>= 5.0.0 and <= 5.1.0

Apache Thrift Java client library versions 0.5.0 through 0.11.0 can bypass SASL negotiation isComplete validation in the org.apach

7.5HIGH

CVE-2018-20657

>= 5.0.0 and <= 5.1.0

The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a cra

7.5HIGH

CVE-2018-20002

>= 5.0.0 and <= 5.1.0

The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in G

5.5MEDIUM

CVE-2018-14634

>= 5.0.0 and <= 5.1.0

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to S

7.8HIGH

CVE-2015-5738

>= 3.3.2 and <= 3.5.1

The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to su

7.5HIGH

CVE-2014-7169

>= 4.0.0 and <= 4.0.5

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environme

9.8CRITICAL

CVE-2014-6271

>= 4.0.0 and <= 4.0.5

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows re

9.8CRITICAL