F5 Networks Updates
3020Warning Date
Severity Level
Warning Number
Target Sector
14 January, 2021
● Medium
2021-2325
All
Description:
F5 Networks has released security updates to address multiple vulnerabilities in the following products:
- BIG-IP (LTM, AAM, Advanced WAF, AFM, Analytics, APM, ASM, DDHD, DNS, FPS, GTM, Link Controller, PEM, SSLO)
- 16.0.0 - 16.0.1
- 15.1.0 - 15.1.2
- 14.1.0 - 14.1.3
- 13.1.0 - 13.1.3
- 12.1.0 - 12.1.5
- 11.6.1 - 11.6.5
- APM Clients
- 7.1.x - 7.2.x
- Traffix SDC
- 5.1.0
- BIG-IQ Centralized Management
- 7.0.0 - 7.1.0
- 6.0.0 - 6.1.0
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- Escalation of privilege
Best practice and Recommendations:
The F5 Networks recommends updating products if possible, it recommends users to avoid uploading untrusted CRLs. :