Blog

glibc vulnerability CVE-2020-1752 Security Advisory Security Advisory Description A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion ... More info: https://support.f5.com/csp/article/K49921213?utm_source=f5support&utm_medium=RSS

Welcome to the first edition of the iThemes Security Pro feature spotlight. In these posts, we are going to highlight a feature and share a bit about why we developed the feature, who the feature is for, and how to use the feature. Today we are going to cover Magic Links and Passwordless Logins, two […] More info: https://ithemes.com/ithemes-security-pro-feature-spotlight-1-magic-links-passwordless-login/

Today we are happy to announce a new update of the activity log for WPForms extension. In this update we increased the activity log coverage. With this extension, WP Activity Log keeps a record of entry edits and access control changes. Both these features were introduced in WPForms 1.6.0 just a few weeks ago. Let’s […] More info: https://wpactivitylog.com/activity-log-for-wpforms-update-logs-of-entry-edits-access-control-settings-changes/

systemd vulnerability CVE-2020-13776 Security Advisory Security Advisory Description systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by ... More info: https://support.f5.com/csp/article/K04572666?utm_source=f5support&utm_medium=RSS

NGINX Controller installer vulnerability CVE-2020-5911 Security Advisory Security Advisory Description The NGINX Controller installer starts the download of Kubernetes packages from an HTTP URL On ... More info: https://support.f5.com/csp/article/K84084843?utm_source=f5support&utm_medium=RSS

NGINX Controller NATS vulnerability CVE-2020-5910 Security Advisory Security Advisory Description The Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do ... More info: https://support.f5.com/csp/article/K59209532?utm_source=f5support&utm_medium=RSS

NGINX Controller vulnerability CVE-2020-5909 Security Advisory Security Advisory Description When users run the command displayed in NGINX Controller user interface (UI) to fetch the agent ... More info: https://support.f5.com/csp/article/K31150658?utm_source=f5support&utm_medium=RSS

IP-in-IP Packet Processing vulnerability CVE-2020-10136 Security Advisory Security Advisory Description Multiple products that implement the IP Encapsulation within IP standard (RFC 2003, STD 1) ... More info: https://support.f5.com/csp/article/K44453423?utm_source=f5support&utm_medium=RSS

TMUI RCE vulnerability CVE-2020-5902 Security Advisory Security Advisory Description The Traffic Management User Interface (TMUI), also referred to as the Configuration utility, has a Remote Code ... More info: https://support.f5.com/csp/article/K52145254?utm_source=f5support&utm_medium=RSS

TMUI vulnerability CVE-2020-5905 Security Advisory Security Advisory Description In the BIG-IP Configuration utility Network > WCCP page, the system does not sanitize all user-provided data before ... More info: https://support.f5.com/csp/article/K07051153?utm_source=f5support&utm_medium=RSS