F5 Updates
3385Warning Date
Severity Level
Warning Number
Target Sector
1 July, 2020
● High
2020-1426
All
Description:
F5 Networks has released security updates to address multiple vulnerabilities in the following product:
- BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, FPS, GTM, Link Controller, PEM)
- 15.0.0 - 15.1.0
- 14.1.0 - 14.1.2
- 13.1.0 - 13.1.3
- 12.1.0 - 12.1.5
- 11.6.1 - 11.6.5
Threats:
An attacker could exploit the vulnerabilities by doing the following:
- Remote code execution.
- Obtain sensitive information.
- Cross-site request forgery (CSRF)).
- Cross-site scripting (XSS)).
Best practice and Recommendations:
The F5 Networks team encourages users to update the affected products.
For more information:
- https://support.f5.com/csp/article/K52145254
- https://support.f5.com/csp/article/K22493037
- https://support.f5.com/csp/article/K00091341
- https://support.f5.com/csp/article/K31301245
- https://support.f5.com/csp/article/K33023560
- https://support.f5.com/csp/article/K43638305
- https://support.f5.com/csp/article/K33440533
- https://support.f5.com/csp/article/K07051153
- https://support.f5.com/csp/article/K82518062