漏洞分享 - F5 產品存在多個漏洞
F5 產品存在多個漏洞
一、摘要
F5 產品存在多個漏洞,允許遠端攻擊者利用這些漏洞,於目標系統觸發阻斷服務狀況、遠端執行程式碼、繞過保安限制、敏感資料洩露及資料篡改。
二、存在風險
F5 產品存在多個漏洞,允許遠端攻擊者利用這些漏洞,於目標系統觸發阻斷服務狀況、遠端執行程式碼、繞過保安限制、敏感資料洩露及資料篡改,其影響系統或版本如下:
- 受影響之系統:
- BIG-IP
- 17.1.0
- 16.1.0 - 16.1.4
- 15.1.0 - 15.1.9
- BIG-IP (AFM)
- 17.1.0
- 16.1.0 - 16.1.3
- 15.1.0 - 15.1.9
- BIG-IP (IPS)
- 17.1.0
- 16.1.0 - 16.1.3
- 15.1.0 - 15.1.8
- BIG-IP (Advanced WAF/ASM)
- 17.1.0
- 16.1.0 - 16.1.3
- 15.1.0 - 15.1.9
- BIG-IP (PEM)
- 17.1.0 - 17.1.1
- 16.1.0 - 16.1.4
- 15.1.0 - 15.1.10
- BIG-IP Next CNF
- 1.1.0 - 1.1.1
- BIG-IP Next SPK
- 1.5.0 - 1.8.0
三、建議改善措施:
企業及使用者如有上述漏洞版本應盡速更新或實施原廠提供之減緩方案。
情資報告連結:
- https://my.f5.com/manage/s/article/K000134516
- https://my.f5.com/manage/s/article/K000135873
- https://my.f5.com/manage/s/article/K000135946
- https://my.f5.com/manage/s/article/K000137270
- https://my.f5.com/manage/s/article/K000137333
- https://my.f5.com/manage/s/article/K000137334
- https://my.f5.com/manage/s/article/K000137416
- https://my.f5.com/manage/s/article/K000137521
- https://my.f5.com/manage/s/article/K000137522
- https://my.f5.com/manage/s/article/K000137595
- https://my.f5.com/manage/s/article/K000137675
- https://my.f5.com/manage/s/article/K000137796
- https://my.f5.com/manage/s/article/K000137886
- https://my.f5.com/manage/s/article/K000138047
- https://my.f5.com/manage/s/article/K11453402
- https://my.f5.com/manage/s/article/K32544615
- https://my.f5.com/manage/s/article/K91054692
- https://my.f5.com/manage/s/article/K98606833