- How many CVEs does F5 Networks have?
- F5 Networks has 157 published CVE records since 2017, including 1 in the last two years.
- How many F5 Networks CVEs are in CISA KEV?
- Yes — 2 of F5 Networks's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which F5 Networks products have the most CVEs?
- The F5 Networks products with the most published CVEs are BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator), BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator, WebSafe), BIG-IP (APM), BIG-IP APM, BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe.
- What are the most common weakness types in F5 Networks CVEs?
- F5 Networks's CVEs most often map to these CWE weakness types: CWE-288 (Authentication Bypass Using an Alternate Path or Channel), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-918 (Server-Side Request Forgery (SSRF)).
- Are there public exploits for F5 Networks vulnerabilities?
- Yes — 4 of F5 Networks's CVEs have a known public exploit.
- How many critical F5 Networks vulnerabilities are there?
- F5 Networks has 9 critical and 72 high-severity CVEs.
- What is the average severity of F5 Networks CVEs?
- The average CVSS base score across F5 Networks's scored CVEs is 6.7.