F5 Products Denial of Service Vulnerability

Release Date: 26 Mar 2024 3186 Views

RISK: High Risk

High Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

A vulnerability was identified in F5 Products. A remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.

 

Note:

No patch is currently available for CVE-2023-4408 of the affected products.

Impact

  • Denial of Service

System / Technologies affected

BIG-IP (all modules)

 

  • 17.1.0 - 17.1.1
  • 16.1.0 - 16.1.4
  • 15.1.0 - 15.1.10 

 

BIG-IQ Centralized Management

 

  • 8.1.0 - 8.3.0
 

Solutions

Please visit the vendor web-site for more details.

 

Apply workarounds issued by the vendor:

 

Workaround:

Reduce the vulnerability of attacks by following workaround:

 

  1. Ensuring that TCP/UDP port 53 is not allowed as a default service (allow-service default)
  2. Disabling the Use BIND Server on BIG-IP option in the DNS profile

Vulnerability Identifier

Source

Related Link

https://my.f5.com/manage/s/article/K000138990

Related Tags

F5Denial of Service

Share with

Previous

Microsoft Edge Multiple Vulnerabilities

25 Mar 2024 3279 Views

Next

Apple Product Remote Code Execution Vulnerability

26 Mar 2024 3204 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY