Serious Vulnerabilities in F5's BIG-IP Allow Full System Compromise

Discussion in 'other security issues & news' started by mood, Jul 2, 2020.

  1. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    Serious Vulnerabilities in F5's BIG-IP Allow Full System Compromise
    July 2, 2020
    https://www.securityweek.com/serious-vulnerabilities-f5s-big-ip-allow-full-system-compromise
    Positive Technologies: F5 fixes critical vulnerability discovered by Positive Technologies in BIG-IP application delivery controller
     
  2. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    13,593
    Location:
    Slovenia
  3. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    PoC exploits released for F5 BIG-IP vulnerabilities, patch now!
    July 5, 2020
    https://www.bleepingcomputer.com/ne...ased-for-f5-big-ip-vulnerabilities-patch-now/
     
  4. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    Mitigating critical F5 BIG-IP RCE flaw not enough, bypass found
    July 7, 2020
    https://www.bleepingcomputer.com/ne...l-f5-big-ip-rce-flaw-not-enough-bypass-found/
     
  5. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    Attackers target critical flaw in popular networking gear
    July 7, 2020
    https://www.welivesecurity.com/2020...itical-vulnerability-popular-networking-gear/
     
  6. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    F5 BIG-IP contains multiple vulnerabilities including unauthenticated remote command execution
    Vulnerability Note VU#290915
    July 8, 2020

    https://kb.cert.org/vuls/id/290915
     
  7. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    Thousands of Vulnerable F5 BIG-IP Users Still Open to Takeover
    July 17, 2020
    https://threatpost.com/thousands-f5-big-ip-users-takeover/157543/
     
  8. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    US govt confirms active exploitation of F5 BIG-IP RCE flaw
    July 24, 2020
    https://www.bleepingcomputer.com/ne...ms-active-exploitation-of-f5-big-ip-rce-flaw/
     
  9. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    FBI: Iranian hackers trying to exploit critical F5 BIG-IP flaw
    August 8, 2020
    https://www.bleepingcomputer.com/ne...rs-trying-to-exploit-critical-f5-big-ip-flaw/
    ZDNet: FBI says an Iranian hacking group is attacking F5 networking devices
     
    Last edited: Aug 16, 2020
  10. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    32,040
    Iranian Hackers Target Critical Vulnerability in F5's BIG-IP
    September 1, 2020
    https://www.securityweek.com/iranian-hackers-target-critical-vulnerability-f5s-big-ip
    Crowdstrike: Who Is PIONEER KITTEN?
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.