F5 Networks Update
1815Warning Date
Severity Level
Warning Number
Target Sector
28 September, 2021
● Medium
2021-3581
All
Description:
F5 Networks has released a security update to address a vulnerability in the following product:
- BIG-IP (APM):
- 16.0.0 - 16.0.1
- 15.1.0 - 15.1.3
- 14.1.0 - 14.1.4
- 13.1.0 - 13.1.4
- 12.1.0 - 12.1.6
- 11.6.1 - 11.6.5
Threats:
Attacker could exploit this vulnerability by executing cross-site scripting (XSS) attack.
Best practice and Recommendations:
The CERT team encourages users to update the affected versions:
- 15.1.0 - 15.1.3 to 15.1.4
- 14.1.0 - 14.1.4 to 14.1.4.4
To mitigate this vulnerability, you can associate an iRule to the affected BIG-IP APM virtual server.
For more information about the iRule, contact F5 Support .