BIG-IP vulnerability patch bypass discovered by hacker

On 2nd July we shared the information about the vulnerability patch implemented by F5 Networks for the BIG-IP vulnerability . Mirch and Dardaman with few others find a way to bypass the mitigation of this attack proposed by F5 . Now vendor also confirm the bypass method and proposed a more efficient mitigation for this vulnerability .
According to the data CVE-2020-5902 exploited in the wild to deliver various malware and DDOS and uploading web shells and recorded nearly 3000 vulnerable system on the web.
Organization which is not implemented the patch already told that they can assume that their BIG-IP system is compromised.
By at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

FortiManager Zero-Day Exploit: Fortinet Issues Urgent Security Warning

  Fortinet Issues Urgent Warning About Critical FortiManager Vulnerability (CVE-2024-47575) Fortinet has publicly disclosed a critical vulne...