F5 產品多個漏洞
發佈日期:
2025年02月06日
361
觀看次數
風險: 中度風險
類型: 操作系統 - Network
於 F5 產品發現多個漏洞。攻擊者可利用此漏洞,於目標系統觸發遠端執行任意程式碼、阻斷服務狀況、敏感資料洩露及繞過保安限制。
影響
- 資料洩露
- 阻斷服務
- 繞過保安限制
- 遠端執行程式碼
受影響之系統或技術
BIG-IP (all modules)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.5
- 17.1.0 - 17.1.2
BIG-IP (PEM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.4
- 17.1.0 - 17.1.1
BIG-IP (ASM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.4
- 17.1.0 - 17.1.1
BIG-IP (AFM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.5
- 17.1.0 - 17.1.1
BIG-IP (APM)
- 15.1.0 - 15.1.10
- 16.1.0 - 16.1.4
- 17.1.0 - 17.1.1
BIG-IP Next SPK
- 1.7.0 - 1.7.6
- 1.8.0 - 1.8.2
- 1.9.0
BIG-IP Next Central Manager
- 20.2.0 - 20.2.1
BIG-IP Next CNF
- 1.1.0 - 1.3.3
NGINX Plus
- R28 - R33
NGINX Open Source
- 1.11.4 - 1.27.3
解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
安裝供應商提供的修補程式:
- https://my.f5.com/manage/s/article/K000134888
- https://my.f5.com/manage/s/article/K000138757
- https://my.f5.com/manage/s/article/K000138932
- https://my.f5.com/manage/s/article/K000139656
- https://my.f5.com/manage/s/article/K000139778
- https://my.f5.com/manage/s/article/K000139780
- https://my.f5.com/manage/s/article/K000140578
- https://my.f5.com/manage/s/article/K000140920
- https://my.f5.com/manage/s/article/K000140933
- https://my.f5.com/manage/s/article/K000140947
- https://my.f5.com/manage/s/article/K000140950
- https://my.f5.com/manage/s/article/K000141003
- https://my.f5.com/manage/s/article/K000141380
- https://my.f5.com/manage/s/article/K000148412
- https://my.f5.com/manage/s/article/K000148587
- https://my.f5.com/manage/s/article/K000149173
- https://my.f5.com/manage/s/article/K000149185
- https://my.f5.com/manage/s/article/K000149540
漏洞識別碼
- CVE-2014-0064
- CVE-2014-0065
- CVE-2014-0066
- CVE-2014-0067
- CVE-2019-5010
- CVE-2019-16056
- CVE-2022-26488
- CVE-2024-36242
- CVE-2024-38660
- CVE-2024-56337
- CVE-2025-20029
- CVE-2025-20045
- CVE-2025-20058
- CVE-2025-21087
- CVE-2025-21091
- CVE-2025-22846
- CVE-2025-22891
- CVE-2025-23239
- CVE-2025-23412
- CVE-2025-23413
- CVE-2025-23415
- CVE-2025-23419
- CVE-2025-24312
- CVE-2025-24319
- CVE-2025-24320
- CVE-2025-24326
- CVE-2025-24497
資料來源
相關連結
- https://my.f5.com/manage/s/article/K000134888
- https://my.f5.com/manage/s/article/K000138757
- https://my.f5.com/manage/s/article/K000138932
- https://my.f5.com/manage/s/article/K000139656
- https://my.f5.com/manage/s/article/K000139778
- https://my.f5.com/manage/s/article/K000139780
- https://my.f5.com/manage/s/article/K000140578
- https://my.f5.com/manage/s/article/K000140920
- https://my.f5.com/manage/s/article/K000140933
- https://my.f5.com/manage/s/article/K000140947
- https://my.f5.com/manage/s/article/K000140950
- https://my.f5.com/manage/s/article/K000141003
- https://my.f5.com/manage/s/article/K000141380
- https://my.f5.com/manage/s/article/K000148412
- https://my.f5.com/manage/s/article/K000148587
- https://my.f5.com/manage/s/article/K000149173
- https://my.f5.com/manage/s/article/K000149185
- https://my.f5.com/manage/s/article/K000149540
分享至