CVE-2021-23033 : Security Advisory and Response

This article provides an overview of CVE-2021-23033, a vulnerability impacting BIG-IP Advanced WAF and BIG-IP ASM versions before specified releases.

Understanding CVE-2021-23033

CVE-2021-23033 highlights a vulnerability in F5's BIG-IP Advanced WAF and BIG-IP ASM software versions.

What is CVE-2021-23033?

The vulnerability affects versions of BIG-IP Advanced WAF and BIG-IP ASM before 16.1.0, 15.1.3.1, 14.1.4.3, 13.1.4.1, and all versions of 12.1.x. Configuring a WebSocket profile on a virtual server can lead to undisclosed requests causing bd to terminate.

The Impact of CVE-2021-23033

The vulnerability could be exploited by malicious actors to cause services to crash, potentially leading to denial of service (DoS) conditions. Organizations using affected versions are urged to apply patches promptly.

Technical Details of CVE-2021-23033

The following details provide insights into the vulnerability.

Vulnerability Description

When specific WebSocket configurations are in place, undisclosed requests can trigger the termination of bd, impacting system stability.

Affected Systems and Versions

BIG-IP Advanced WAF and BIG-IP ASM software versions before 16.1.0, 15.1.3.1, 14.1.4.3, 13.1.4.1, and all versions of 12.1.x are vulnerable to this exploit.

Exploitation Mechanism

Malicious actors can send crafted requests via WebSocket profiles, causing the targeted service (bd) to crash.

Mitigation and Prevention

Understanding mitigation strategies is crucial to safeguard systems.

Immediate Steps to Take

Organizations should apply the latest patches provided by F5 Networks to address the vulnerability promptly.

Long-Term Security Practices

Regularly monitor for security updates and vendor announcements to stay informed about potential vulnerabilities.

Patching and Updates

Stay updated with the latest security patches and advisories from F5 Networks to ensure ongoing protection against CVE-2021-23033.