F5 產品多個漏洞
最後更新
2024年05月10日
發佈日期:
2024年05月09日
737
觀看次數
風險: 中度風險
類型: 操作系統 - Network
於 F5 產品發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、遠端執行任意程式碼、跨網站指令碼、資料洩露及繞過保安限制。
注意:
暫無可修補 CVE-2024-27983 的修補程式。
[更新於 2024-05-10]
更新受影響之系統或技術、解決方案、漏洞識別碼及相關連結。
影響
- 遠端執行程式碼
- 繞過保安限制
- 阻斷服務
- 跨網站指令碼
- 資料洩露
受影響之系統或技術
BIG-IP (all modules)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.4
- 16.1.2.1 - 16.1.4
- 17.1.0 - 17.1.1
BIG-IP Next Central Manager
- 20.0.1 - 20.0.2
- 20.0.1 - 20.1.0
BIG-IP (AFM)
- 17.1.0
- 16.1.0 - 16.1.3
- 15.1.10
BIG-IP Next CNF
- 1.1.0 - 1.1.1
BIG-IP (APM)
- 17.1.0
- 16.1.0 - 16.1.4
- 15.1.0 - 15.1.10
APM Clients
- 7.2.3 - 7.2.4
BIG-IP (Advanced WAF/ASM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.4
- 17.1.0 - 17.1.1
BIG-IP Next (WAF)
- 20.0.1 - 20.1.0
NGINX App Protect WAF
- 4.0.0 - 4.8.0
- 3.10.0 - 3.12.2
解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
安裝供應商提供的修補程式:
- https://my.f5.com/manage/s/article/K000138634
- https://my.f5.com/manage/s/article/K000138732
- https://my.f5.com/manage/s/article/K000138733
- https://my.f5.com/manage/s/article/K000138636
- https://my.f5.com/manage/s/article/K000138728
- https://my.f5.com/manage/s/article/K000139037
- https://my.f5.com/manage/s/article/K000138744
- https://my.f5.com/manage/s/article/K000139217
- https://my.f5.com/manage/s/article/K000138894
- https://my.f5.com/manage/s/article/K000138912
- https://my.f5.com/manage/s/article/K000138520
- https://my.f5.com/manage/s/article/K000132430
- https://my.f5.com/manage/s/article/K11342432
- https://my.f5.com/manage/s/article/K000138898
應用供應商提供的臨時處理方法:
臨時處理方法:
從以下臨時處理方法以減少攻擊:
使用 F5 Application Services Templates (FAST) 而不是 iApp 來部署 HTTP 伺服器相關的應用程式。
漏洞識別碼
- CVE-2024-21793
- CVE-2024-25560
- CVE-2024-26026
- CVE-2024-27202
- CVE-2024-28883
- CVE-2024-28889
- CVE-2024-31156
- CVE-2024-32049
- CVE-2024-32761
- CVE-2024-33604
- CVE-2024-33608
資料來源
相關連結
- https://my.f5.com/manage/s/article/K000138634
- https://my.f5.com/manage/s/article/K000138732
- https://my.f5.com/manage/s/article/K000138733
- https://my.f5.com/manage/s/article/K000138636
- https://my.f5.com/manage/s/article/K000138728
- https://my.f5.com/manage/s/article/K000139037
- https://my.f5.com/manage/s/article/K000138744
- https://my.f5.com/manage/s/article/K000139217
- https://my.f5.com/manage/s/article/K000138894
- https://my.f5.com/manage/s/article/K000138912
- https://my.f5.com/manage/s/article/K000138520
- https://my.f5.com/manage/s/article/K000132430
- https://my.f5.com/manage/s/article/K11342432
- https://my.f5.com/manage/s/article/K000138898
分享至