What is the severity of CVE-2021-23010?

CVE-2021-23010 has a high severity rating due to its impact on the F5 BIG-IP ASM/Advanced WAF's handling of WebSocket requests.

How do I fix CVE-2021-23010?

To mitigate CVE-2021-23010, upgrade your F5 BIG-IP Application Security Manager to version 12.1.5.3 or later, 13.1.3.5 or later, 14.1.3.1 or later, 15.1.2 or later, or 16.0.1.1 or later.

What versions of F5 BIG-IP are affected by CVE-2021-23010?

CVE-2021-23010 affects F5 BIG-IP versions prior to 12.1.5.3, 13.1.3.5, 14.1.3.1, 15.1.2, and 16.0.1.1.

What are the consequences of exploiting CVE-2021-23010?

Exploiting CVE-2021-23010 could allow an attacker to bypass security policies when processing WebSocket requests with JSON payloads.

Is there a workaround for CVE-2021-23010?

There are no specific workarounds recommended for CVE-2021-23010; upgrading to the patched versions is the advised approach.

Vulnerability/
CVE-2021-23010

high

7.5

10/5/2021

19/5/2021

CVE-2021-23010

First published: Mon May 10 2021(Updated: )

On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.5, and 12.1.x before 12.1.5.3, when the BIG-IP ASM/Advanced WAF system processes WebSocket requests with JSON payloads using the default JSON Content Profile in the ASM Security Policy, the BIG-IP ASM bd process may produce a core file. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Credit: f5sirt@f5.com

Affected Software	Affected Version	How to fix
F5 Application Security Manager	>=12.1.0<=12.1.5.3
F5 Application Security Manager	>=13.0<=13.1.3.5
F5 Application Security Manager	>=14.1.0<=14.1.3.1
F5 Application Security Manager	>=15.1.0<=15.1.2
F5 Application Security Manager	>=16.0.0<=16.0.1.1

Never miss a vulnerability like this again

Reference Links

https://support.f5.com/csp/article/K18570111

Frequently Asked Questions

What is the severity of CVE-2021-23010?
CVE-2021-23010 has a high severity rating due to its impact on the F5 BIG-IP ASM/Advanced WAF's handling of WebSocket requests.
How do I fix CVE-2021-23010?
To mitigate CVE-2021-23010, upgrade your F5 BIG-IP Application Security Manager to version 12.1.5.3 or later, 13.1.3.5 or later, 14.1.3.1 or later, 15.1.2 or later, or 16.0.1.1 or later.
What versions of F5 BIG-IP are affected by CVE-2021-23010?
CVE-2021-23010 affects F5 BIG-IP versions prior to 12.1.5.3, 13.1.3.5, 14.1.3.1, 15.1.2, and 16.0.1.1.
What are the consequences of exploiting CVE-2021-23010?
Exploiting CVE-2021-23010 could allow an attacker to bypass security policies when processing WebSocket requests with JSON payloads.
Is there a workaround for CVE-2021-23010?
There are no specific workarounds recommended for CVE-2021-23010; upgrading to the patched versions is the advised approach.

agent/last-modified-date
agent/first-publish-date
agent/type
collector/nvd-index
agent/software-canonical-lookup-request
agent/references
agent/severity
agent/author
agent/softwarecombine
agent/tags
agent/description
agent/event
vendor/f5
canonical/f5 application security manager
version/f5 application security manager/12.1.0
version/f5 application security manager/12.1.5.3
version/f5 application security manager/13.0
version/f5 application security manager/13.1.3.5
version/f5 application security manager/14.1.0
version/f5 application security manager/14.1.3.1
version/f5 application security manager/15.1.0
version/f5 application security manager/15.1.2
version/f5 application security manager/16.0.0
version/f5 application security manager/16.0.1.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.