For the second time in less than a year, F5 announces critical vulnerabilities in networking devices

F5 announced March 10 seven vulnerabilities tied to it’s BIG-IP and BIG-IQ network devices, the company’s second significant security disclosure in less than year.

The latest disclosure includes remote command execution vulnerabilities in the iControl REST interface and Traffic Management User Interface and two buffer overflow vulnerabilities. Six of the seven vulnerabilities listed receive a severity score of 8.0 or higher from the Common Vulnerability Scoring System, and four are scored between 9.0 and 9.9.