First published: Thu May 05 2022(Updated: )
F5 BIG-IP contains a missing authentication in critical function vulnerability which can allow for remote code execution, creation or deletion of files, or disabling services.
Credit: f5sirt@f5.com f5sirt@f5.com f5sirt@f5.com
Affected Software | Affected Version | How to fix |
---|---|---|
F5 BIG-IP and BIG-IQ Centralized Management | ||
F5 Access Policy Manager | >=11.6.1<=11.6.5 | |
F5 Access Policy Manager | >=12.1.0<=12.1.6 | |
F5 Access Policy Manager | >=13.1.0<13.1.5 | |
F5 Access Policy Manager | >=14.1.0<14.1.4.6 | |
F5 Access Policy Manager | >=15.1.0<15.1.5.1 | |
F5 Access Policy Manager | >=16.1.0<16.1.2.2 | |
F5 BIG-IP Advanced Firewall Manager | >=11.6.1<=11.6.5 | |
F5 BIG-IP Advanced Firewall Manager | >=12.1.0<=12.1.6 | |
F5 BIG-IP Advanced Firewall Manager | >=13.1.0<13.1.5 | |
F5 BIG-IP Advanced Firewall Manager | >=14.1.0<14.1.4.6 | |
F5 BIG-IP Advanced Firewall Manager | >=15.1.0<15.1.5.1 | |
F5 BIG-IP Advanced Firewall Manager | >=16.1.0<16.1.2.2 | |
F5 BIG-IP Analytics | >=11.6.1<=11.6.5 | |
F5 BIG-IP Analytics | >=12.1.0<=12.1.6 | |
F5 BIG-IP Analytics | >=13.1.0<13.1.5 | |
F5 BIG-IP Analytics | >=14.1.0<14.1.4.6 | |
F5 BIG-IP Analytics | >=15.1.0<15.1.5.1 | |
F5 BIG-IP Analytics | >=16.1.0<16.1.2.2 | |
F5 BIG-IP Application Acceleration Manager | >=11.6.1<=11.6.5 | |
F5 BIG-IP Application Acceleration Manager | >=12.1.0<=12.1.6 | |
F5 BIG-IP Application Acceleration Manager | >=13.1.0<13.1.5 | |
F5 BIG-IP Application Acceleration Manager | >=14.1.0<14.1.4.6 | |
F5 BIG-IP Application Acceleration Manager | >=15.1.0<15.1.5.1 | |
F5 BIG-IP Application Acceleration Manager | >=16.1.0<16.1.2.2 | |
F5 Application Security Manager | >=11.6.1<=11.6.5 | |
F5 Application Security Manager | >=12.1.0<=12.1.6 | |
F5 Application Security Manager | >=13.1.0<13.1.5 | |
F5 Application Security Manager | >=14.1.0<14.1.4.6 | |
F5 Application Security Manager | >=15.1.0<15.1.5.1 | |
F5 Application Security Manager | >=16.1.0<16.1.2.2 | |
F5 BIG-IP | >=11.6.1<=11.6.5 | |
F5 BIG-IP | >=12.1.0<=12.1.6 | |
F5 BIG-IP | >=13.1.0<13.1.5 | |
F5 BIG-IP | >=14.1.0<14.1.4.6 | |
F5 BIG-IP | >=15.1.0<15.1.5.1 | |
F5 BIG-IP | >=16.1.0<16.1.2.2 | |
F5 BIG-IP Fraud Protection Service | >=11.6.1<=11.6.5 | |
F5 BIG-IP Fraud Protection Service | >=12.1.0<=12.1.6 | |
F5 BIG-IP Fraud Protection Service | >=13.1.0<13.1.5 | |
F5 BIG-IP Fraud Protection Service | >=14.1.0<14.1.4.6 | |
F5 BIG-IP Fraud Protection Service | >=15.1.0<15.1.5.1 | |
F5 BIG-IP Fraud Protection Service | >=16.1.0<16.1.2.2 | |
Riverbed SteelApp Traffic Manager | >=11.6.1<=11.6.5 | |
Riverbed SteelApp Traffic Manager | >=12.1.0<=12.1.6 | |
Riverbed SteelApp Traffic Manager | >=13.1.0<13.1.5 | |
Riverbed SteelApp Traffic Manager | >=14.1.0<14.1.4.6 | |
Riverbed SteelApp Traffic Manager | >=15.1.0<15.1.5.1 | |
Riverbed SteelApp Traffic Manager | >=16.1.0<16.1.2.2 | |
F5 BIG-IP Link Controller | >=11.6.1<=11.6.5 | |
F5 BIG-IP Link Controller | >=12.1.0<=12.1.6 | |
F5 BIG-IP Link Controller | >=13.1.0<13.1.5 | |
F5 BIG-IP Link Controller | >=14.1.0<14.1.4.6 | |
F5 BIG-IP Link Controller | >=15.1.0<15.1.5.1 | |
F5 BIG-IP Link Controller | >=16.1.0<16.1.2.2 | |
Riverbed SteelApp Traffic Manager | >=11.6.1<=11.6.5 | |
Riverbed SteelApp Traffic Manager | >=12.1.0<=12.1.6 | |
Riverbed SteelApp Traffic Manager | >=13.1.0<13.1.5 | |
Riverbed SteelApp Traffic Manager | >=14.1.0<14.1.4.6 | |
Riverbed SteelApp Traffic Manager | >=15.1.0<15.1.5.1 | |
Riverbed SteelApp Traffic Manager | >=16.1.0<16.1.2.2 | |
F5 BIG-IP Policy Enforcement Manager | >=11.6.1<=11.6.5 | |
F5 BIG-IP Policy Enforcement Manager | >=12.1.0<=12.1.6 | |
F5 BIG-IP Policy Enforcement Manager | >=13.1.0<13.1.5 | |
F5 BIG-IP Policy Enforcement Manager | >=14.1.0<14.1.4.6 | |
F5 BIG-IP Policy Enforcement Manager | >=15.1.0<15.1.5.1 | |
F5 BIG-IP Policy Enforcement Manager | >=16.1.0<16.1.2.2 | |
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 | ||
>=11.6.1<=11.6.5 | ||
>=12.1.0<=12.1.6 | ||
>=13.1.0<13.1.5 | ||
>=14.1.0<14.1.4.6 | ||
>=15.1.0<15.1.5.1 | ||
>=16.1.0<16.1.2.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-1388 is classified as a critical vulnerability with a high risk of remote code execution, allowing attackers to manipulate files and disable services.
To remediate CVE-2022-1388, you should upgrade F5 BIG-IP software to the versions specified in the security advisory, specifically 16.1.2.2 or later for 16.1.x, 15.1.5.1 or later for 15.1.x, and so on.
CVE-2022-1388 affects several F5 BIG-IP versions, including 16.1.x prior to 16.1.2.2, 15.1.x prior to 15.1.5.1, and 14.1.x versions prior to specified versions.
Yes, CVE-2022-1388 can be exploited by unauthenticated users, enabling remote code execution without requiring valid credentials.
The vulnerability CVE-2022-1388 can lead to severe consequences such as remote code execution, unauthorized file manipulation, and service disruptions.