Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

F5 Flaws Allow Rogue Admin Setup

May 9, 2024
Reading Time: 3 mins read
in Alerts
F5 Flaws Allow Rogue Admin Setup

Two critical security vulnerabilities have been identified in the F5 Next Central Manager, posing significant threats to organizations using this network management device. The vulnerabilities, CVE-2024-21793 and CVE-2024-26026, are SQL and OData injection flaws that allow an unauthenticated attacker to execute malicious SQL statements through the BIG-IP Next Central Manager API. These flaws could enable attackers to gain full administrative control over the devices and manage all F5 assets through the compromised system.

The impact of exploiting these vulnerabilities extends beyond initial unauthorized access. Attackers can leverage this access to create hidden rogue administrator accounts, ensuring their persistence within the network even after initial security measures like password resets and system patches are applied. This hidden access is facilitated by an SSRF vulnerability that allows attackers to call an undocumented API to create these accounts undetected.

Eclypsium, the security firm that reported these vulnerabilities, also uncovered additional weaknesses in the system. These include vulnerabilities that could allow brute force attacks against administrative passwords and enable password resets without the need for current password verification. These security gaps could potentially allow attackers to lock out legitimate users, further compromising the security of the network.

While there have been no reports of these vulnerabilities being actively exploited in the wild, their existence within such critical infrastructure highlights the need for immediate updates and ongoing vigilance. F5 has addressed these issues in version 20.2.0 of Next Central Manager, and users are strongly encouraged to update their systems to this latest release to mitigate potential threats. This situation underscores the broader security challenges faced by networking and application infrastructure, which are increasingly targeted by attackers seeking to exploit highly privileged systems.

Reference:
  • Critical F5 Manager Flaws Could Let Hackers Create Rogue Admins

Tags: APICyber AlertCyber Alerts 2024Cyber RiskCyber threatEclypsiumF5May 2024
ADVERTISEMENT

Related Posts

COLDRIVER Hackers Target Sensitive Data

COLDRIVER Hackers Target Sensitive Data

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

CoGUI Targets Consumer and Finance Brands

May 8, 2025
Critical Kibana Flaws Allows Code Execution

Mirai Botnet Exploits Vulnerabilities in IoT

May 7, 2025
Critical Kibana Flaws Allows Code Execution

Critical Kibana Flaws Allows Code Execution

May 7, 2025
Critical Kibana Flaws Allows Code Execution

New OttoKit Flaw Targets WordPress Sites

May 7, 2025

Latest Alerts

CoGUI Targets Consumer and Finance Brands

COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

New OttoKit Flaw Targets WordPress Sites

Mirai Botnet Exploits Vulnerabilities in IoT

Critical Kibana Flaws Allows Code Execution

Subscribe to our newsletter

    Latest Incidents

    Masimo Cyberattack Disrupts Manufacturing

    Cyberattack Targets Tepotzotlán Facebook

    West Lothian Schools Hit by Ransomware

    UK Legal Aid Agency Faces Cyber Incident

    South African Airways Hit by Cyberattack

    Coweta County School System Cyberattack

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial