cbcvebase.
CVE-2021-23025
published 2021-09-14

CVE-2021-23025: On version 15.1.x before 15.1.0.5, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.5, and all versions of 12.1.x and 11.6.x, an authenticated remote command…

high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
On version 15.1.x before 15.1.0.5, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.5, and all versions of 12.1.x and 11.6.x, an authenticated remote command execution vulnerability exists in the BIG-IP Configuration utility. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected

85 ranges· showing 25
VendorProductVersion rangeFixed in
f5big-ip_aam
f5big-ip_access_policy_manager
f5big-ip_access_policy_manager11.6.1 – 11.6.5
f5big-ip_access_policy_manager12.1.0 – 12.1.6
f5big-ip_access_policy_manager>= 13.1.0 < 13.1.3.513.1.3.5
f5big-ip_access_policy_manager>= 14.1.0 < 14.1.3.114.1.3.1
f5big-ip_access_policy_manager>= 15.0.0 < 15.1.0.515.1.0.5
f5big-ip_advanced_firewall_manager11.6.1 – 11.6.5
f5big-ip_advanced_firewall_manager12.1.0 – 12.1.6
f5big-ip_advanced_firewall_manager>= 13.1.0 < 13.1.3.513.1.3.5
f5big-ip_advanced_firewall_manager>= 14.1.0 < 14.1.3.114.1.3.1
f5big-ip_advanced_firewall_manager>= 15.0.0 < 15.1.0.515.1.0.5
f5big-ip_advanced_waf
f5big-ip_advanced_web_application_firewall11.6.1 – 11.6.5
f5big-ip_advanced_web_application_firewall12.1.0 – 12.1.6
f5big-ip_advanced_web_application_firewall>= 13.1.0 < 13.1.3.513.1.3.5
f5big-ip_advanced_web_application_firewall>= 14.1.0 < 14.1.3.114.1.3.1
f5big-ip_advanced_web_application_firewall>= 15.0.0 < 15.1.0.515.1.0.5
f5big-ip_afm
f5big-ip_analytics
f5big-ip_analytics11.6.1 – 11.6.5
f5big-ip_analytics12.1.0 – 12.1.6
f5big-ip_analytics>= 13.1.0 < 13.1.3.513.1.3.5
f5big-ip_analytics>= 14.1.0 < 14.1.3.114.1.3.1
f5big-ip_analytics>= 15.0.0 < 15.1.0.515.1.0.5