F5 Networks Issues Critical Patches for BIG-IP Manager Vulnerabilities
May 9, 2024F5 Networks has released patches for two high-severity vulnerabilities in its BIG-IP Next Central Manager.
The identified vulnerabilities could let attackers gain full administrative control and create hidden accounts.
Security researchers warn that these vulnerabilities pose a significant risk to affected organizations.
F5 Networks urges customers to upgrade to software version 20.2.0 and apply additional security measures as soon as possible.
The status of three other vulnerabilities remains unknown, and they pose substantial risks despite no known exploitations yet.
Summary based on 5 sources
Get a daily email with more Tech stories
Sources
The Hacker News • May 9, 2024
Critical F5 Central Manager Vulnerabilities Allow Enable Full Device TakeoverSecurityWeek • May 9, 2024
F5 Patches Dangerous Vulnerabilities in BIG-IP Next Central ManagerHelp Net Security • May 9, 2024
F5 fixes BIG-IP Next Central Manager flaws with public PoCs (CVE-2024-21793, CVE-2024-26026) - Help Net SecuritySecurity Affairs • May 9, 2024
Experts warn of BIG-IP Next Central Manager flaws that allow device takeover