What Do I Need to Know About CVE-2020-5902; the F5 Networks BigIP RCE Vulnerability

preview_player
Показать описание
On June 30th, 2020, just ahead of the long holiday weekend in the US, F5 Networks set the stage for fireworks of a different kind. F5 released an update for its BigIP product line, fixing an unauthenticated remote code executing vulnerability discovered by Positive Technologies.

Just like that, the news was out, and around July 4th, exploits started to show up taking advantage of this vulnerability. Of significance, this vulnerability has a perfect 10 for its Common Vulnerability Scoring System (CVSS) score.

The issues are less of an emergency for users who properly isolate the management plane of their BigIP devices, but according to some estimates, there are still thousands of unprotected, unpatched devices available. The SANS Internet Storm Center began observing active scanning to try to find these vulnerable devices over the weekend, and it’s important for security teams to take immediate action to protect their organizations from threats.

In this webcast, we will discuss the F5 BigIP RCE vulnerability, exploit attempts seen in the wild, and what actions to take now to best protect your network.

Speaker Bio
Dr. Johannes Ullrich

SANS is the most trusted and by far the largest source for information security training and security certification in the world. It also develops, maintains, and makes available at no cost, the largest collection of research documents about various aspects of information security, and it operates the Internet's early warning system - the Internet Storm Center.
  1. SANS Institute
  2. sans institute
  3. information security
  4. cyber security
  5. cybersecurity
  6. information security training
Рекомендации по теме
What I Need 0:04:05

What I Need to Do

5 things you 0:00:16

5 things you NEED to do this school year #viral

How Much Sleep 0:00:30

How Much Sleep Do You Really Need? - Professor Of Neuroscience

The FIRST Thing 0:03:37

The FIRST Thing You Need To Do (If You Want To Get Anywhere In Life)

Do I Need 0:09:24

Do I Need to Go to Confession?

Who Do I 0:10:16

Who Do I Need To Become - Motivational Video

How Much Protein 0:00:18

How Much Protein Do Need To Eat A Day To Maximize Your Physique?

How Much Protein 0:07:30

How Much Protein Do I Need To Build Muscle? | Nutritionist Explains... | Myprotein

How Much Sleep 0:03:24

How Much Sleep Do You Actually Need?

Do you like 0:02:54

Do you like Broccoli? from Vlad and Nikita

How Much Money 0:04:22

How Much Money Do You Need to Start Day Trading?

What do I 0:00:22

What do I need to do to get a job?

How Well Do 0:29:17

How Well Do We Remember This Year?

How much protein 0:00:38

How much protein do you need to eat per day? 🍳 #shorts

24 Things You 0:16:46

24 Things You Need to do (or have) BEFORE the Baby Comes.

Do I need 0:00:42

Do I need the CompTIA A+ to work in IT or Cyber Security?

BBC Learning - 0:01:32

BBC Learning - What Do Humans Need To Stay Healthy

Abe Parker - 0:03:04

Abe Parker - Butterflies (Lyrics) | How do I tell you I need you

Do You Really 0:03:54

Do You Really Need 8 Hours of Sleep Every Night? | Body Stuff with Dr. Jen Gunter | TED

What do you 0:02:24

What do you need doing? Need + verb-ing - BBC English Class

How Much RAM 0:05:33

How Much RAM Do You ACTUALLY Need? (2020)

NEW 💥 How 0:12:07

NEW 💥 How much money do you NEED to Day Trade?!

Do You Really 0:01:00

Do You Really Need A Root Canal?

How Many Viewers 0:00:37

How Many Viewers Do You Need To Make $1000 On Ad Revenue On Twitch???

Комментарии
Автор

Very well explained with deep and technical insights into the vulnerability!

mykeETx
Автор

Excellent insights! Thank you for sharing on how to check for exploits and ioc. Please do share such on important CVEs

urmi