vulnerability

F5 Networks: CVE-2021-23008: K51213246: BIG-IP APM AD authentication vulnerability CVE-2021-23008

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Apr 28, 2021	Apr 29, 2021	Aug 23, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Apr 28, 2021

Added

Apr 29, 2021

Modified

Aug 23, 2024

Description

On version 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and all versions of 16.0.x and 11.6.x., BIG-IP APM AD (Active Directory) authentication can be bypassed via a spoofed AS-REP (Kerberos Authentication Service Response) response sent over a hijacked KDC (Kerberos Key Distribution Center) connection or from an AD server compromised by an attacker. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Solution

f5-big-ip-upgrade-latest

References

CVE-2021-23008
https://attackerkb.com/topics/CVE-2021-23008
URL-https://my.f5.com/manage/s/article/K51213246

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today