Hackers now exploit critical F5 BIG-IP flaw in attacks, patch now
Summary
F5 has upgraded a BIG-IP APM denial-of-service vulnerability to critical severity, reclassifying it as a remote code execution (RCE) flaw. Attackers are actively exploiting this vulnerability to deploy webshells on unpatched devices, indicating a significant security risk for organizations using F5 BIG-IP systems.
IFF Assessment
The exploitation of a critical RCE vulnerability in a widely used network device by active threat actors poses a direct and immediate threat to organizational security.
Severity
The vulnerability allows for remote code execution, has a low attack complexity, requires no privileges, and has a high impact on confidentiality, integrity, and availability, leading to a critical CVSS score.
Defender Context
This critical vulnerability in F5 BIG-IP systems allows attackers to gain remote code execution and deploy webshells, posing a severe risk to network infrastructure. Defenders must prioritize patching or mitigating this flaw immediately to prevent unauthorized access and potential further compromise.