all InfoSec news
F5 patches BIG-IP Next Central Manager flaws that could lead to device takeover
CSO Online www.csoonline.com
Multicloud security and application delivery vendor F5 has fixed two high-risk vulnerabilities in BIG-IP Next Central Manager, the central component used to manage BIG-IP Next load balancers and app security instances running on-premises or in the cloud.
According to the researchers who found them, the flaws could be used to gain full administrative control of affected devices by leaking admin password hashes and then cracking them offline.
“These weaknesses can be used in a variety of potential attack paths,” researchers …
app application application delivery big big-ip big-ip next central manager cloud delivery device flaws found high load balancers manage manager multicloud multicloud security next patches researchers risk running security takeover vendor vulnerabilities