Skip to main content

F5 BIG-IP Multiple Vulnerabilities

Release Date: 6 Jan 2021 4631 Views

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

Multiple vulnerabilities were identified in F5 BIG-IP, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, remote code execution, data manipulation, cross-site scripting and bypass security restriction on the targeted system.


Impact

  • Cross-Site Scripting
  • Denial of Service
  • Remote Code Execution
  • Security Restriction Bypass
  • Spoofing
  • Data Manipulation

System / Technologies affected

BIG-IP (LTM, AAM, Advanced WAF, AFM, Analytics, APM, ASM, DDHD, DNS, FPS, GTM, Link Controller, PEM, SSLO)

  • version 11.6.1 - 11.6.5
  • version 12.1.0 - 12.1.5
  • version 13.1.0 - 13.1.3
  • version 14.1.0 - 14.1.3
  • version 15.1.0 - 15.1.2
  • version 16.0.0 - 16.0.1

 

Enterprise Manager

  • version 3.1.1

 

BIG-IQ Centralized Management

  • version 5.0.0 - 5.4.0
  • version 6.0.0 - 6.1.0
  • version 7.0.0 - 7.1.0

 

F5 iWorkflow

  • version 2.3.0

 

Traffix SDC

  • version 4.4.0
  • version 5.0.0 - 5.1.0

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

 


Vulnerability Identifier


Source


Related Link