Security News > 2024 > May > Critical F5 Central Manager Vulnerabilities Allow Enable Full Device Takeover
2024-05-09 06:11
Two security vulnerabilities have been discovered in F5 Next Central Manager that could be exploited by a threat actor to seize control of the devices and create hidden rogue administrator accounts for persistence. The remotely exploitable flaws "can give attackers full administrative control of the device, and subsequently allow attackers to create accounts on any F5 assets managed by the Next
News URL
https://thehackernews.com/2024/05/critical-f5-central-manager.html
Related news
- Sandbox Escape Vulnerabilities in Judge0 Expose Systems to Complete Takeover (source)
- Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks (source)
- New BIG-IP Next Central Manager bugs allow device takeover (source)
- Critical vulnerabilities take 4.5 months on average to remediate (source)