F5 Networks Update
1717Warning Date
Severity Level
Warning Number
Target Sector
29 December, 2020
● High
2020-2256
All
Description:
F5 Networks has released security alerts to address multiple vulnerabilities in the following products:
- BIG-IP (LTM, AAM, Advanced WAF, AFM, Analytics, APM, ASM, DDHD, DNS, FPS, GTM, Link Controller, PEM, SSLO)
- 13.1.0 - 13.1.3
- 12.1.0 - 12.1.5
- 11.6.1 - 11.6.5
- BIG-IQ Centralized Management
- 7.0.0 - 7.1.0
- 6.0.0 - 6.1.0
- 5.4.0
- Traffix SDC
- 5.1.0
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- Execute arbitrary code
- Escalation of privilege
Best practice and Recommendations:
The F5 Networks recommends updating products if possible, it recommends the following procedure to mitigate the impact of the vulnerabilities :