BIG-IP vulnerability patch bypass discovered by hacker

On 2nd July we shared the information about the vulnerability patch implemented by F5 Networks for the BIG-IP vulnerability . Mirch and Dardaman with few others find a way to bypass the mitigation of this attack proposed by F5 . Now vendor also confirm the bypass method and proposed a more efficient mitigation for this vulnerability .
According to the data CVE-2020-5902 exploited in the wild to deliver various malware and DDOS and uploading web shells and recorded nearly 3000 vulnerable system on the web.
Organization which is not implemented the patch already told that they can assume that their BIG-IP system is compromised.
By at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Iranian Cyber Threats Intensify Against U.S. Defense and OT Networks, Warn Federal Agencies

U.S. Agencies Warn of Escalating Iranian Cyber Threats to Defense and Critical Infrastructure Multiple U.S. cybersecurity and intelligence a...