Lucene search
China National Vulnerability DatabaseCNVD-2021-65621HistoryAug 25, 2021 - 12:00 a.m.
F5 BIG-IP Advanced WAF and ASM TMUI server-side request forgery vulnerability
2021-08-2500:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.001 Low
EPSS
Percentile
42.9%
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. A security vulnerability exists in the F5 BIG-IP Advanced WAF and ASM TMUI, which could be exploited by an attacker with network access to the management interface and authentication via guest privileges to be able to perform SSRF attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| f5 big-ip (advanced waf and asm) 16.0.0- | eq | 16.0.1 |
Related
prion
prion
Server side request forgery (ssrf)
2021-09-14 23:15:00
cvelist
cvelist
CVE-2021-23029
2021-09-14 22:01:56
nessus
nessus
cve
cve
CVE-2021-23029
2021-09-14 23:15:07
f5
f5
K52420610 : Advanced WAF and BIG-IP ASM TMUI vulnerability CVE-2021-23029
2021-08-24 00:00:00
K50974556 : Overview of F5 vulnerabilities (August 2021)
2021-08-24 00:00:00
nvd
nvd
CVE-2021-23029
2021-09-14 23:15:07
thn
thn
F5 Releases Critical Security Patch for BIG-IP and BIG-IQ Devices
2021-08-26 11:51:00
threatpost
threatpost
F5 Bug Could Lead to Complete System Takeover
2021-08-26 16:40:38