Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

F5 Flaws Allow Rogue Admin Setup

May 9, 2024
Reading Time: 3 mins read
in Alerts
F5 Flaws Allow Rogue Admin Setup

Two critical security vulnerabilities have been identified in the F5 Next Central Manager, posing significant threats to organizations using this network management device. The vulnerabilities, CVE-2024-21793 and CVE-2024-26026, are SQL and OData injection flaws that allow an unauthenticated attacker to execute malicious SQL statements through the BIG-IP Next Central Manager API. These flaws could enable attackers to gain full administrative control over the devices and manage all F5 assets through the compromised system.

The impact of exploiting these vulnerabilities extends beyond initial unauthorized access. Attackers can leverage this access to create hidden rogue administrator accounts, ensuring their persistence within the network even after initial security measures like password resets and system patches are applied. This hidden access is facilitated by an SSRF vulnerability that allows attackers to call an undocumented API to create these accounts undetected.

Eclypsium, the security firm that reported these vulnerabilities, also uncovered additional weaknesses in the system. These include vulnerabilities that could allow brute force attacks against administrative passwords and enable password resets without the need for current password verification. These security gaps could potentially allow attackers to lock out legitimate users, further compromising the security of the network.

While there have been no reports of these vulnerabilities being actively exploited in the wild, their existence within such critical infrastructure highlights the need for immediate updates and ongoing vigilance. F5 has addressed these issues in version 20.2.0 of Next Central Manager, and users are strongly encouraged to update their systems to this latest release to mitigate potential threats. This situation underscores the broader security challenges faced by networking and application infrastructure, which are increasingly targeted by attackers seeking to exploit highly privileged systems.

Reference:
  • Critical F5 Manager Flaws Could Let Hackers Create Rogue Admins

Tags: APICyber AlertCyber Alerts 2024Cyber RiskCyber threatEclypsiumF5May 2024
ADVERTISEMENT

Related Posts

GhostSpy Android Malware Full Device Control

FBI Warns Luna Moth Targets US Law Firms

May 27, 2025
GhostSpy Android Malware Full Device Control

Winos 4.0 Malware Spread Via Fake Installers

May 27, 2025
GhostSpy Android Malware Full Device Control

GhostSpy Android Malware Full Device Control

May 27, 2025
D-Link Routers Exposed by Weak Credentials

D-Link Routers Exposed by Weak Credentials

May 26, 2025
D-Link Routers Exposed by Weak Credentials

TA-ShadowCricke Unmasked via Backdoors

May 26, 2025
D-Link Routers Exposed by Weak Credentials

Killnet Resurfaces with New Identity

May 26, 2025

Latest Alerts

FBI Warns Luna Moth Targets US Law Firms

Winos 4.0 Malware Spread Via Fake Installers

GhostSpy Android Malware Full Device Control

D-Link Routers Exposed by Weak Credentials

TA-ShadowCricke Unmasked via Backdoors

Killnet Resurfaces with New Identity

Subscribe to our newsletter

    Latest Incidents

    Everest Ransomware Leaks Coke Staff Data

    Adidas Data Breach Exposes Customer Contacts

    Semiconductor Firm AXT Hit by Data Breach

    Hackers Steal $700K from Philly School District Accounts

    Chinese hackers hit US utilities via flaw

    Naukri Fixes Bug That Exposed Recruiter Email Addresses

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial