Attackers Exploiting Critical F5 Networks Vulnerability
Healthcare Info Security
Akshaya Asokan
Threats actors are actively exploiting a critical remote code vulnerability in F5 Networks' BIG-IP tracked as CVE-2021-22986, patches for which were released by the company on March 10.
The vulnerability, which has a CVSS ranking of 9.8 out of 10 - highly critical - is a remote command execution flaw in BIG-IP, a network traffic security management solution of F5 Networks.
F5 Networks notes the vulnerability allows unauthenticated attackers to access BIG-IP’s management interface and self IP addresses and enable them to execute arbitrary system commands, create or delete files, and disable services.
On Thursday, security firm NCC Group said...