F5 Server iControl REST unauthenticated remote command execution vulnerability - RedSeal

F5 Server iControl REST unauthenticated remote command execution vulnerability

2021-03-31

RedSeal Cyber Threat Series

F5 has released patches for several BIG-IP and BIG-IQ critical vulnerabilities. CVE-2021-22986 is the most critical since it allows unauthenticated attackers with network access to use the iControl REST interface, via the BIG-IP management interface and self IP addresses, to execute system commands that could lead to complete system compromise. This vulnerability can only be exploited through the control plane and cannot be exploited through the data plane.

RedSeal customers should:

Run a custom best practice check to receive a list of vulnerable devices
Create and run daily reports until all affected systems are patched.

For additional details, contact your RedSeal sales representatives or email info@redseal.net

References:

https://support.f5.com/csp/article/K03009991

https://www.tenable.com/blog/cve-2021-22986-f5-patches-several-critical-vulnerabilities-in-big-ip-big-iq

Tags: Cyber Threat

F5 Server iControl REST unauthenticated remote command execution vulnerability

Share this entry

Recent Posts

From Reactive to Resilient: How 2025’s Cybersecurity Evolution Redefines Defense for 2026

Exposure Management in 2025: Meeting the Moment

The Auto Industry’s Invisible Crisis: Why Exposure Management Can’t Wait

Drowning in Vulnerabilities? Here’s How to Finally Know What to Fix First

RedSeal recognized in the 2025 Gartner® Magic Quadrant™ for Exposure Assessment Platforms: A Strong Position in a Rapidly Expanding Market

Blog Archive

Get the latest news, invites to events, and threat alerts

Platform

Services

Solutions

Partners

Company

Resources