F5 BIG-IP Security Restriction Bypass Vulnerability

Medium4

Details

A vulnerability was identified in F5 BIG-IP, a remote attacker could exploit this vulnerability to trigger security restriction bypass on the targeted system.

Impact

Security Restriction Bypass

System / Technologies affected

BIG-IP Next SPK

version 1.5.0 – 1.9.1

BIG-IP Next CNF

version 1.1.0 – 1.2.1

BIG-IP (AFM)

version 15.1.0 – 15.1.10
version 16.1.0 – 16.1.4
version 17.1.0 – 17.1.1

Traffix SDC

version 5.1.0

Solutions

Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes issued by the vendor:

Traffix SDC version 5.2.0

Note: Other affected products have no patch released yet.

Vulnerability Identifier

CVE-2024-2283

Reference

https://www.hkcert.org/tc/security-bulletin/f5-big-ip-security-restriction-bypass-vulnerability_20240227

Details

Impact

System / Technologies affected

Solutions

Vulnerability Identifier

Reference

Chinese Government Moving Away from Intel and AMD Chips

iPhone Rumored to Feature Baidu AI Chatbot in China

F5 Products Denial of Service Vulnerability

Details

Impact

System / Technologies affected

Solutions

Vulnerability Identifier

Reference

Chinese Government Moving Away from Intel and AMD Chips

Windows Notepad to Receive Spelling Check and Auto-Correction Features

iPhone Rumored to Feature Baidu AI Chatbot in China

F5 Products Denial of Service Vulnerability

US Department of Justice and 16 States Sue Apple for Smartphone Market Monopoly