Security Alert (A23-02-06): Multiple Vulnerabilities in F5 Products
06 February 2023
F5 has published security advisories to address multiple vulnerabilities in F5 devices. The details about the vulnerabilities can be found at the following website: https://my.f5.com/manage/s/article/K000130496
BIG-IP APM Clients
BIG-IQ Centralized Management
Successful exploitation of the vulnerabilities could lead to remote code execution or denial of service of an affected system.
Patches for the affected systems are not yet available. Administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk. It is recommended to properly assess the impact before adopting the workaround and consult the product vendors for the assistance. As a security best practice, management access should be restricted to only trusted users and devices over a secure network.