CIS Logo
tagline: Confidence in the Connected World

CISA, USCYBERCOM Warn of Massive Vulnerability for Popular Networking Device

July 6, 2020

FCW

The U.S. government is warning of a particularly dangerous vulnerability affecting BIG-IP networking devices produced by F5 that likely impacts every major sector in the world, including federal agencies. According to F5, the remote code execution vulnerability was first discovered by researcher Mikhail Klyuchnikov of Positive Technologies and exists in the traffic management user interface of its Big-IP networking devices. It allows unauthenticated attackers to carry out a number of RCE attacks, including creating or deleting files, disabling services and issuing other arbitrary system commands.