Attackers Exploiting Critical F5 Networks Vulnerability

Healthcare Info Security

Akshaya Asokan

Threats actors are actively exploiting a critical remote code vulnerability in F5 Networks' BIG-IP tracked as CVE-2021-22986, patches for which were released by the company on March 10.

The vulnerability, which has a CVSS ranking of 9.8 out of 10 - highly critical - is a remote command execution flaw in BIG-IP, a network traffic security management solution of F5 Networks.

F5 Networks notes the vulnerability allows unauthenticated attackers to access BIG-IP’s management interface and self IP addresses and enable them to execute arbitrary system commands, create or delete files, and disable services.

On Thursday, security firm NCC Group said...

Get the Morning Update

Thanks for subscribing!