What is the severity of CVE-2021-23008?

CVE-2021-23008 is considered a critical vulnerability due to the potential for authentication bypass.

How do I fix CVE-2021-23008?

To fix CVE-2021-23008, upgrade to the latest version of BIG-IP APM, specifically versions 15.1.3, 14.1.4, 13.1.4, 12.1.6, or newer.

Which versions of BIG-IP APM are affected by CVE-2021-23008?

CVE-2021-23008 affects BIG-IP APM versions prior to 15.1.3, 14.1.4, 13.1.4, 12.1.6, and includes all versions of 16.0.x and 11.6.x.

What is the exploitation method for CVE-2021-23008?

CVE-2021-23008 can be exploited by sending a spoofed AS-REP response over a hijacked KDC to bypass authentication.

What impact does CVE-2021-23008 have on systems?

The impact of CVE-2021-23008 is significant as it allows unauthorized access to systems protected by BIG-IP APM.

Vulnerability/
CVE-2021-23008

critical

9.8

CWE

287

10/5/2021

19/5/2021

CVE-2021-23008

First published: Mon May 10 2021(Updated: )

On version 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and all versions of 16.0.x and 11.6.x., BIG-IP APM AD (Active Directory) authentication can be bypassed via a spoofed AS-REP (Kerberos Authentication Service Response) response sent over a hijacked KDC (Kerberos Key Distribution Center) connection or from an AD server compromised by an attacker. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Credit: f5sirt@f5.com

Affected Software	Affected Version	How to fix
F5 Access Policy Manager	>=11.5.2<11.6.5
F5 Access Policy Manager	>=12.1.0<12.1.5
F5 Access Policy Manager	>=13.1.0<13.1.3
F5 Access Policy Manager	>=14.1.0<14.1.3
F5 Access Policy Manager	>=15.0.0<15.1.2
F5 Access Policy Manager	>=16.0.0<16.0.1

Never miss a vulnerability like this again

Reference Links

https://support.f5.com/csp/article/K51213246

Frequently Asked Questions

What is the severity of CVE-2021-23008?
CVE-2021-23008 is considered a critical vulnerability due to the potential for authentication bypass.
How do I fix CVE-2021-23008?
To fix CVE-2021-23008, upgrade to the latest version of BIG-IP APM, specifically versions 15.1.3, 14.1.4, 13.1.4, 12.1.6, or newer.
Which versions of BIG-IP APM are affected by CVE-2021-23008?
CVE-2021-23008 affects BIG-IP APM versions prior to 15.1.3, 14.1.4, 13.1.4, 12.1.6, and includes all versions of 16.0.x and 11.6.x.
What is the exploitation method for CVE-2021-23008?
CVE-2021-23008 can be exploited by sending a spoofed AS-REP response over a hijacked KDC to bypass authentication.
What impact does CVE-2021-23008 have on systems?
The impact of CVE-2021-23008 is significant as it allows unauthorized access to systems protected by BIG-IP APM.

agent/severity
agent/references
agent/weakness
agent/author
agent/type
agent/description
agent/event
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/f5
canonical/f5 access policy manager
version/f5 access policy manager/11.5.2
version/f5 access policy manager/12.1.0
version/f5 access policy manager/13.1.0
version/f5 access policy manager/14.1.0
version/f5 access policy manager/15.0.0
version/f5 access policy manager/16.0.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.