F5: >> Big-Ip Access Policy Manager Client >> 7.2.3 Security Vulnerabilities
An origin validation vulnerability exists in
BIG-IP APM browser network access VPN client
for Windows, macOS and Linux which may allow an attacker to bypass F5 endpoint inspection.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CVSS Score
7.4
EPSS Score
0.0
Published
2024-05-08
BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
CVSS Score
6.8
EPSS Score
0.002
Published
2023-09-27
BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
CVSS Score
5.3
EPSS Score
0.001
Published
2023-09-27