Threat Intelligence Report regarding BIG-IP F5 Firewall vulnerability (CVE-2022-1388)

On May 9, 2022, additional information was published about a vulnerability in the iControl REST API of F5’s BIG-IP firewall products that could allow attackers to gain full access to the firewall and underlying network components. The specific vulnerability for which this Threat Intelligence Report was written concerns CVE-2022-1388 and allows an attacker, without authenticating, to execute top-level (root) code on the affected system. Given the severity of these vulnerabilities, NFIR recommends that the patches made available be installed as soon as possible.

The Threat Intelligence Report provides details of these vulnerabilities and what steps your organization can take.