Sunday, May 2, 2021

F5 Networks: K51213246 (CVE-2021-23008): BIG-IP APM AD authentication vulnerability CVE-2021-23008

Description
Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.From K51213246:A remote attacker can hijack a KDC connection using a spoofed AS-REP response. For an APM access policy configured with AD authentication and SSO (single sign-on) agent, if a spoofed credential related to this vulnerability is used, depending how the back-end system validates the authentication token it receives, access will most likely fail. An APM access policy can also be configured for BIG-IP system authentication. A spoofed credential related to this vulnerability for an administrative user through the APM access policy results in local administrative access.
Solution(s)
  • f5-big-ip-upgrade-latest


  • References
  • https://support.f5.com/csp/article/K51213246
  • CVE-2021-23008




  •  

    Copyright © 2020 Cyber Details - Vulnerability Database™

    Thanks for everything Templateism - You should have written the code a little more complicated