Summary
Vulnerabilities, with severity “high”, have been detected in BIG-IP products, an application and network services platform designed to improve the availability, security and performance of web applications.
Risk
Estimate of impact of the vulnerability on the reference community: MEDIUM/YELLOW (63.07/100)1.
Type
- Elevation of Privilege
- Security Restrictions Bypass
Affected products and/or versions
F5
- BIG-IP, versions 15.1.0 – 15.1.10
- BIG-IP, versions 16.1.0 – 16.1.4
- BIG-IP, version 17.1.0 – 17.1.1
Mitigation actions
In line with the vendor’s declarations, it is recommended to follow the indications of the security bulletin reported in the References section.
Unique Vulnerability Identifiers
Here are only the CVEs related to the “high” severity vulnerabilities:
References
https://my.f5.com/manage/s/article/K000140061
1This estimate is made taking into account several parameters, including: CVSS, availability of patches/workarounds and PoC, diffusion of the affected software/devices in the reference community.
