Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K09121542
HistoryFeb 10, 2021 - 12:00 a.m.

K09121542 : BIG-IP SSL/TLS vulnerability CVE-2021-22981

2021-02-1000:00:00
my.f5.com
10
big-ip
ssl/tls
vulnerability
cve-2021-22981
man-in-the-middle
renegotiation
rfc 7627

AI Score

4.9

Confidence

High

EPSS

0.001

Percentile

28.7%

JSON

Security Advisory Description

The original TLS protocol includes a weakness in the master secret negotiation that is mitigated by the Extended Master Secret (EMS) extension defined in RFC 7627. TLS connections that do not use EMS are vulnerable to man-in-the-middle attacks during renegotiation. (CVE-2021-22981).

Impact

This vulnerability impacts the BIG-IP data plane. Attackers may set up a second Transport Layer Security (TLS) session with the same master secrets to carry out man-in-the-middle attacks (Triple Handshake attack) during TLS renegotiation.

For more information on BIG-IP support for RFC 7627: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension, refer to K66202244: Support for RFC 7627 extended master secret extension.

Related

cvelist 1
nessus 1
prion 1
nvd 1
cve 1
cvelist
cvelist
CVE-2021-22981
2021-02-12 17:50:21
nessus
nessus
F5 Networks BIG-IP : BIG-IP SSL/TLS vulnerability (K09121542)
2021-02-11 00:00:00
prion
prion
Code injection
2021-02-12 18:15:00
nvd
nvd
CVE-2021-22981
2021-02-12 18:15:12
cve
cve
CVE-2021-22981
2021-02-12 18:15:12

AI Score

4.9

Confidence

High

EPSS

0.001

Percentile

28.7%

JSON
Related for F5:K09121542
cvelist1nessus1prion1nvd1cve1