F5 BIG-IP Multiple Vulnerabilities

Release Date: 6 Jan 2021 4485 Views

RISK: Medium Risk

Medium Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

Multiple vulnerabilities were identified in F5 BIG-IP, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, remote code execution, data manipulation, cross-site scripting and bypass security restriction on the targeted system.

Impact

  • Cross-Site Scripting
  • Denial of Service
  • Remote Code Execution
  • Security Restriction Bypass
  • Spoofing
  • Data Manipulation

System / Technologies affected

BIG-IP (LTM, AAM, Advanced WAF, AFM, Analytics, APM, ASM, DDHD, DNS, FPS, GTM, Link Controller, PEM, SSLO)

  • version 11.6.1 - 11.6.5
  • version 12.1.0 - 12.1.5
  • version 13.1.0 - 13.1.3
  • version 14.1.0 - 14.1.3
  • version 15.1.0 - 15.1.2
  • version 16.0.0 - 16.0.1

 

Enterprise Manager

  • version 3.1.1

 

BIG-IQ Centralized Management

  • version 5.0.0 - 5.4.0
  • version 6.0.0 - 6.1.0
  • version 7.0.0 - 7.1.0

 

F5 iWorkflow

  • version 2.3.0

 

Traffix SDC

  • version 4.4.0
  • version 5.0.0 - 5.1.0

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

 

Vulnerability Identifier

Source

Related Link

Related Tags

F5Cross Site ScriptingDenial of ServiceRemote Code ExecutionSecurity Restriction BypassSpoofingTampering

Share with

Previous

Android Multiple Vulnerabilities

5 Jan 2021 4505 Views

Next

nodejs Multiple Vulnerabilities

7 Jan 2021 4129 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY