K05975972: BIG-IP self IP vulnerability CVE-2020-5923

BIG-IP self IP vulnerability CVE-2020-5923 Security Advisory Security Advisory Description Self-IP port-lockdown bypass by way of IPv6 link-local addresses. (CVE-2020-5923) Impact Port lockdowns ... More info: https://support.f5.com/csp/article/K05975972?utm_source=f5support&utm_medium=RSS

K71080411: Linux kernel vulnerability CVE-2021-4155

Linux kernel vulnerability CVE-2021-4155 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when ... More info: https://support.f5.com/csp/article/K71080411?utm_source=f5support&utm_medium=RSS

Serpent – The Backdoor that Hides in Plain Sight

This article was written by Darshan Rana. Overview: A new backdoor malware campaign known as ‘Serpent’ is targeting French government agencies and construction firms. To distribute the attack chain, the threat actor uses a macro-based Microsoft Word document file. The attack vector is exploiting a third-party Windows package manager to install Serpent. The initial document … ContinuedThe post Serpent – The Backdoor that Hides in Plain Sight appeared first on VMware More info: https://blogs.vmware.com/security/2022/04/serpent-the-backdoor-that-hides-in-plain-sight.html?utm_source=rss&utm_medium=rss&utm_campaign=serpent-the-backdoor-that-hides-in-plain-sight

Modern Bank Heists 5.0 – Adversaries Are After More Than Your Money

Cyberattacks against financial institutions have escalated from heist to hijack and from dwell to destruction. In this episode of Ask the Howlers, VMware’s Tom Kellermann, Head of Cybersecurity, and Rick McElroy, Principal Cybersecurity Strategist, discuss the findings from this year’s Modern Bank Heists 5.0 report. Gain insights on: Chronos attacks – manipulation of time and … ContinuedThe post Modern Bank Heists 5.0 – Adversaries Are After More Than Your Money More info: https://blogs.vmware.com/security/2022/04/modern-bank-heists-5-0-adversaries-are-after-more-than-your-money.html?utm_source=rss&utm_medium=rss&utm_campaign=modern-bank-heists-5-0-adversaries-are-after-more-than-your-money

K96924184: BIG-IP HTTP profile vulnerability CVE-2022-23022

BIG-IP HTTP profile vulnerability CVE-2022-23022 Security Advisory Security Advisory Description When an HTTP profile is configured on a virtual server, undisclosed requests can cause the Traffic ... More info: https://support.f5.com/csp/article/K96924184?utm_source=f5support&utm_medium=RSS

K62532228: Linux kernel CVE-2020-10769

Linux kernel CVE-2020-10769 Security Advisory Security Advisory Description A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys in crypto/authenc.c in ... More info: https://support.f5.com/csp/article/K62532228?utm_source=f5support&utm_medium=RSS

K51975973: Eclipse Jetty vulnerability CVE-2021-34428

Eclipse Jetty vulnerability CVE-2021-34428 Security Advisory Security Advisory Description For Eclipse Jetty versions <= 9.4.40, <= 10.0.2, <= 11.0.2, if an exception is thrown from the ... More info: https://support.f5.com/csp/article/K51975973?utm_source=f5support&utm_medium=RSS

K06024431: BIG-IQ vulnerability CVE-2021-23024

BIG-IQ vulnerability CVE-2021-23024 Security Advisory Security Advisory Description The BIG-IQ Configuration utility has an authenticated remote command execution vulnerability in undisclosed pages. More info: https://support.f5.com/csp/article/K06024431?utm_source=f5support&utm_medium=RSS
Translate »