{"id":23092,"date":"2021-08-30T23:01:19","date_gmt":"2021-08-30T15:01:19","guid":{"rendered":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/?p=23092"},"modified":"2024-11-19T11:21:59","modified_gmt":"2024-11-19T03:21:59","slug":"%e3%80%90%e6%bc%8f%e6%b4%9e%e9%a0%90%e8%ad%a6%e3%80%91f5-networks%e4%b9%8bbig-ip%e8%88%87big-iq%e7%94%a2%e5%93%81%e5%ad%98%e5%9c%a8%e5%a4%9a%e5%80%8b%e5%ae%89%e5%85%a8%e6%bc%8f%e6%b4%9ecve-2021-23025","status":"publish","type":"post","link":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/archives\/23092","title":{"rendered":"\u3010\u6f0f\u6d1e\u9810\u8b66\u3011F5 Networks\u4e4bBIG-IP\u8207BIG-IQ\u7522\u54c1\u5b58\u5728\u591a\u500b\u5b89\u5168\u6f0f\u6d1e(CVE-2021-23025~23037)\uff0c\u5141\u8a31\u653b\u64ca\u8005\u57f7\u884c\u7cfb\u7d71\u547d\u4ee4\u9032\u800c\u63a5\u7ba1\u7cfb\u7d71\u53ca\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\uff0c\u8acb\u5118\u901f\u78ba\u8a8d\u4e26\u9032\u884c\u66f4\u65b0"},"content":{"rendered":"<h3 style=\"text-align: center;\">\u884c\u653f\u9662\u570b\u5bb6\u8cc7\u901a\u5b89\u5168\u6703\u5831\u6280\u8853\u670d\u52d9\u4e2d\u5fc3<\/h3>\n<h3 style=\"text-align: center;\">\u6f0f\u6d1e\/\u8cc7\u5b89\u8a0a\u606f\u8b66\u8a0a<\/h3>\n<table border=\"1\" cellspacing=\"0\">\n<tbody>\n<tr>\n<td width=\"80\"><strong>\u767c\u5e03\u7de8\u865f<\/strong><\/td>\n<td><strong>NCCST-ANA-2021-0000401<\/strong><\/td>\n<td width=\"80\"><strong>\u767c\u5e03\u6642\u9593<\/strong><\/td>\n<td><strong>Fri Aug 27 16:09:14 CST 2021<\/strong><\/td>\n<\/tr>\n<tr>\n<td><strong>\u4e8b\u4ef6\u985e\u578b<\/strong><\/td>\n<td>\u6f0f\u6d1e\u9810\u8b66<\/td>\n<td>\u767c\u73fe\u6642\u9593<\/td>\n<td>Fri Aug 27 00:00:00 CST 2021<\/td>\n<\/tr>\n<tr>\n<td><strong>\u8b66\u8a0a\u540d\u7a31<\/strong><\/td>\n<td colspan=\"3\">F5 Networks\u4e4bBIG-IP\u8207BIG-<wbr \/>IQ\u7522\u54c1\u5b58\u5728\u591a\u500b\u5b89\u5168\u6f0f\u6d1e(CVE-2021-23025~<wbr \/>23037)\uff0c<wbr \/>\u5141\u8a31\u653b\u64ca\u8005\u57f7\u884c\u7cfb\u7d71\u547d\u4ee4\u9032\u800c\u63a5\u7ba1\u7cfb\u7d71\u53ca\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\uff0c<wbr \/>\u8acb\u5118\u901f\u78ba\u8a8d\u4e26\u9032\u884c\u66f4\u65b0<\/td>\n<\/tr>\n<tr>\n<td><strong>\u5167\u5bb9\u8aaa\u660e<\/strong><\/td>\n<td colspan=\"3\">\u7814\u7a76\u4eba\u54e1\u767c\u73feF5 Networks\u4e4bBIG-IP\u8207BIG-<wbr \/>IQ\u7522\u54c1\u5b58\u5728\u591a\u500b\u5b89\u5168\u6f0f\u6d1e(CVE-2021-23025~<wbr \/>23037)\uff0c\u653b\u64ca\u8005\u53ef\u5229\u7528\u9019\u4e9b\u5f31\u9ede\uff0c<wbr \/>\u85c9\u7531\u767c\u9001\u7279\u88fd\u5c01\u5305\u6216\u5b58\u53d6\u672a\u516c\u958b\u9801\u9762\uff0c<wbr \/>\u9032\u800c\u57f7\u884c\u7cfb\u7d71\u547d\u4ee4\u9032\u800c\u53d6\u5f97\u7ba1\u7406\u54e1\u6b0a\u9650\u53ca\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\u3002<\/td>\n<\/tr>\n<tr>\n<td><strong>\u5f71\u97ff\u5e73\u53f0<\/strong><\/td>\n<td colspan=\"3\">\u53d7\u5f71\u97ff\u4e4bBIG-IP\u7522\u54c1\u8207BIG-IQ\u7522\u54c1\u7248\u672c\u5982\u4e0b\uff1a<\/p>\n<p>1. CVE-2021-23025<\/p>\n<p>BIG-IP (All modules)<\/p>\n<p>15.0.0 &#8211; 15.1.0<\/p>\n<p>14.1.0 &#8211; 14.1.3<\/p>\n<p>13.1.0 &#8211; 13.1.3<\/p>\n<p>12.1.0 &#8211; 12.1.6<\/p>\n<p>11.6.1 &#8211; 11.6.5<\/p>\n<p>2. CVE-2021-23026<\/p>\n<p>BIG-IP (All modules)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>15.1.0 &#8211; 15.1.2<\/p>\n<p>14.1.0 &#8211; 14.1.4<\/p>\n<p>13.1.0 &#8211; 13.1.4<\/p>\n<p>12.1.0 &#8211; 12.1.6<\/p>\n<p>11.6.1 &#8211; 11.6.5<\/p>\n<p>BIG-IQ<\/p>\n<p>8.0.0 &#8211; 8.1.0<\/p>\n<p>7.0.0 &#8211; 7.1.0<\/p>\n<p>6.0.0 &#8211; 6.1.0<\/p>\n<p>3. CVE-2021-23027<\/p>\n<p>BIG-IP (All modules)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>15.1.0 &#8211; 15.1.2<\/p>\n<p>14.1.0 &#8211; 14.1.4<\/p>\n<p>4. CVE-2021-23028<\/p>\n<p>BIG-IP (Advanced WAF, ASM)<\/p>\n<p>16.0.1<\/p>\n<p>15.1.1 &#8211; 15.1.3<\/p>\n<p>14.1.3.1 &#8211; 14.1.4.1<\/p>\n<p>13.1.3.5 &#8211; 13.1.3.6<\/p>\n<p>5. CVE-2021-23029<\/p>\n<p>BIG-IP (Advanced WAF, ASM)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>6. CVE-2021-23030<\/p>\n<p>BIG-IP (Advanced WAF, ASM)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>15.1.0 &#8211; 15.1.3<\/p>\n<p>14.1.0 &#8211; 14.1.4<\/p>\n<p>13.1.0 &#8211; 13.1.4<\/p>\n<p>12.1.0 &#8211; 12.1.6<\/p>\n<p>7. CVE-2021-23031<\/p>\n<p>BIG-IP (Advanced WAF, ASM)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>15.1.0 &#8211; 15.1.2<\/p>\n<p>14.1.0 &#8211; 14.1.4<\/p>\n<p>13.1.0 &#8211; 13.1.3<\/p>\n<p>12.1.0 &#8211; 12.1.5<\/p>\n<p>11.6.1 &#8211; 11.6.5<\/p>\n<p>8. CVE-2021-23032<\/p>\n<p>BIG-IP (DNS)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>15.1.0 &#8211; 15.1.3<\/p>\n<p>14.1.0 &#8211; 14.1.4<\/p>\n<p>13.1.0 &#8211; 13.1.4<\/p>\n<p>12.1.0 &#8211; 12.1.6<\/p>\n<p>9. CVE-2021-23033<\/p>\n<p>BIG-IP (Advanced WAF, ASM)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>15.1.0 &#8211; 15.1.3<\/p>\n<p>14.1.0 &#8211; 14.1.4<\/p>\n<p>13.1.0 &#8211; 13.1.4<\/p>\n<p>12.1.0 &#8211; 12.1.6<\/p>\n<p>10. CVE-2021-23034<\/p>\n<p>BIG-IP (All modules)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>15.1.0 &#8211; 15.1.3<\/p>\n<p>11. CVE-2021-23035<\/p>\n<p>BIG-IP (All modules)<\/p>\n<p>14.1.0 &#8211; 14.1.4<\/p>\n<p>12. CVE-2021-23036<\/p>\n<p>BIG-IP (Advanced WAF, ASM, DataSafe)<\/p>\n<p>16.0.0 &#8211; 16.0.1<\/p>\n<p>13. CVE-2021-23037<\/p>\n<p>BIG-IP (All modules)<\/p>\n<p>16.0.0 &#8211; 16.1.0<\/p>\n<p>15.1.0 &#8211; 15.1.3<\/p>\n<p>14.1.0 &#8211; 14.1.4<\/p>\n<p>13.1.0 &#8211; 13.1.4<\/p>\n<p>12.1.0 &#8211; 12.1.6<\/p>\n<p>11.6.1 &#8211; 11.6.5<\/td>\n<\/tr>\n<tr>\n<td><strong>\u5f71\u97ff\u7b49\u7d1a<\/strong><\/td>\n<td colspan=\"3\">\u9ad8<\/td>\n<\/tr>\n<tr>\n<td><strong>\u5efa\u8b70\u63aa\u65bd<\/strong><\/td>\n<td colspan=\"3\">\u76ee\u524dF5 Networks\u5b98\u65b9\u5df2\u91dd\u5c0d\u9019\u4e9b\u6f0f\u6d1e\u91cb\u51fa\u66f4\u65b0\u7a0b\u5f0f\uff0c<wbr \/>\u8acb\u5404\u6a5f\u95dc\u806f\u7d61\u8a2d\u5099\u7dad\u8b77\u5ee0\u5546\u6216\u53c3\u8003\u4ee5\u4e0b\u7db2\u5740\u9032\u884c\u66f4\u65b0\uff1a<\/p>\n<p><a href=\"https:\/\/support.f5.com\/csp\/article\/K50974556\" target=\"_blank\" rel=\"noopener noreferrer\" data-saferedirecturl=\"https:\/\/www.google.com\/url?q=https:\/\/support.f5.com\/csp\/article\/K50974556&amp;source=gmail&amp;ust=1630421734221000&amp;usg=AFQjCNFc1AeTvZ1ezdV5tNwkyuUHweGprA\">https:\/\/support.f5.com\/csp\/<wbr \/>article\/K50974556<\/a><\/td>\n<\/tr>\n<tr>\n<td><strong>\u53c3\u8003\u8cc7\u6599<\/strong><\/td>\n<td colspan=\"3\">1.\u00a0<a href=\"https:\/\/www.ithome.com.tw\/news\/146397\" target=\"_blank\" rel=\"noopener noreferrer\" data-saferedirecturl=\"https:\/\/www.google.com\/url?q=https:\/\/www.ithome.com.tw\/news\/146397&amp;source=gmail&amp;ust=1630421734221000&amp;usg=AFQjCNFXBHPwkeKq1jNz2MG7jQfSUa48dQ\">https:\/\/www.ithome.com.tw\/<wbr \/>news\/146397<\/a><\/p>\n<p>2.\u00a0<a href=\"https:\/\/support.f5.com\/csp\/article\/K50974556\" target=\"_blank\" rel=\"noopener noreferrer\" data-saferedirecturl=\"https:\/\/www.google.com\/url?q=https:\/\/support.f5.com\/csp\/article\/K50974556&amp;source=gmail&amp;ust=1630421734221000&amp;usg=AFQjCNFc1AeTvZ1ezdV5tNwkyuUHweGprA\">https:\/\/support.f5.com\/csp\/<wbr \/>article\/K50974556<\/a><\/p>\n<p>3.\u00a0https:\/\/thehackernews.com\/<wbr \/>2021\/08\/f5-releases-critical-<wbr \/>security-patches.html<\/td>\n<\/tr>\n<tr>\n<td colspan=\"4\"><\/td>\n<\/tr>\n<tr>\n<td colspan=\"4\"><strong>\u6b64\u985e\u901a\u544a\u767c\u9001\u5c0d\u8c61\u70ba\u901a\u5831\u61c9\u8b8a\u7db2\u7ad9\u767b\u8a18\u4e4b\u8cc7\u5b89\u4eba\u54e1\u3002\u82e5\u8cb4<\/strong><strong>\u00a0<\/strong><strong>\u55ae\u4f4d\u4e4b\u8cc7<wbr \/>\u5b89\u4eba\u54e1\u6709\u8b8a\u66f4\uff0c\u53ef\u9015\u81ea\u767b\u5165\u901a\u5831\u61c9\u8b8a\u7db2\u7ad9\uff08<\/strong><strong><a href=\"https:\/\/www.ncert.nat.gov.tw\/\" target=\"_blank\" rel=\"noopener noreferrer\" data-saferedirecturl=\"https:\/\/www.google.com\/url?q=https:\/\/www.ncert.nat.gov.tw\/&amp;source=gmail&amp;ust=1630421734222000&amp;usg=AFQjCNEG3wbSLvcjnKZFKbgcZnbaG0e-Zg\">https:\/\/<wbr \/>www.ncert.nat.gov.tw<\/a><\/strong><strong>\uff09\u9032\u884c\u4fee\u6539\u3002<wbr \/>\u82e5\u60a8\u4ecd\u70ba\u8cb4\u55ae\u4f4d\u4e4b\u8cc7\u5b89\u4eba\u54e1\u4f46\u975e\u672c\u4e8b\u4ef6\u4e4b\u8655\u7406\u4eba\u54e1\uff0c<wbr \/>\u8acb\u5354\u52a9\u5c07\u6b64\u901a\u544a\u544a\u77e5\u76f8\u95dc\u8655\u7406\u4eba\u54e1\u3002<\/strong><\/p>\n<p><strong>\u5982\u679c\u60a8\u5c0d\u6b64\u901a\u544a\u5167\u5bb9\u6709\u7591\u554f\u6216\u6709\u95dc\u65bc\u6b64\u4e8b\u4ef6\u4e4b\u5efa\u8b70\uff0c<wbr \/>\u8acb\u52ff\u76f4\u63a5\u56de\u8986\u6b64\u4fe1\u4ef6\uff0c\u8acb\u4ee5\u4e0b\u8ff0\u806f\u7d61\u8cc7\u8a0a\u8207\u6211\u5011\u9023\u7d61\u3002<\/strong><br \/>\n<strong>\u5730<\/strong><strong>\u00a0<\/strong><strong>\u5740\uff1a<\/strong><strong>\u00a0<\/strong><strong>\u53f0\u5317\u5e02\u5bcc\u967d\u8857<\/strong><strong>116<\/strong><strong>\u865f<\/strong><br \/>\n<strong>\u806f\u7d61\u96fb\u8a71\uff1a<\/strong><strong>\u00a002-27339922<\/strong><br \/>\n<strong>\u50b3\u771f\u96fb\u8a71\uff1a<\/strong><strong>\u00a002-27331655<\/strong><br \/>\n<strong>\u96fb\u5b50\u90f5\u4ef6\u4fe1\u7bb1\uff1a<\/strong><strong>\u00a0<a href=\"https:\/\/mail.ntpc.edu.tw\/cgi-bin\/genMail?adr=service@nccst.nat.gov.tw&amp;\" target=\"_blank\" rel=\"noopener noreferrer\" data-saferedirecturl=\"https:\/\/www.google.com\/url?q=https:\/\/mail.ntpc.edu.tw\/cgi-bin\/genMail?adr%3Dservice@nccst.nat.gov.tw%26&amp;source=gmail&amp;ust=1630421734222000&amp;usg=AFQjCNFeoXpTcEu9X6pP6yxthIUY6sTZHA\">service@nccst.nat.gov.<wbr \/>tw<\/a><\/strong><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"excerpt":{"rendered":"<p>\u884c\u653f\u9662\u570b\u5bb6\u8cc7\u901a\u5b89\u5168\u6703\u5831\u6280\u8853\u670d\u52d9\u4e2d\u5fc3 \u6f0f\u6d1e\/\u8cc7\u5b89\u8a0a\u606f\u8b66\u8a0a \u767c\u5e03\u7de8\u865f NCCST-ANA-2021-0000401 \u767c\u5e03\u6642\u9593 Fri Aug 27 16:09:14 CST 2021 \u4e8b\u4ef6\u985e\u578b \u6f0f\u6d1e\u9810\u8b66 \u767c\u73fe\u6642\u9593 Fri Aug 27 00:00:00 CST 2021 \u8b66\u8a0a\u540d\u7a31 F5 Networks\u4e4bBIG-IP\u8207BIG-IQ\u7522\u54c1\u5b58\u5728\u591a\u500b\u5b89\u5168\u6f0f\u6d1e(CVE-2021-23025~23037)\uff0c\u5141\u8a31\u653b\u64ca\u8005\u57f7\u884c\u7cfb\u7d71\u547d\u4ee4\u9032\u800c\u63a5\u7ba1\u7cfb\u7d71\u53ca\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\uff0c\u8acb\u5118\u901f\u78ba\u8a8d\u4e26\u9032\u884c\u66f4\u65b0 \u5167\u5bb9\u8aaa\u660e \u7814\u7a76\u4eba\u54e1\u767c\u73feF5 Networks\u4e4bBIG-IP\u8207BIG-IQ\u7522\u54c1\u5b58\u5728\u591a\u500b\u5b89\u5168\u6f0f\u6d1e(CVE-2021-23025~23037)\uff0c\u653b\u64ca\u8005\u53ef\u5229\u7528\u9019\u4e9b\u5f31\u9ede\uff0c\u85c9\u7531\u767c\u9001\u7279\u88fd\u5c01\u5305\u6216\u5b58\u53d6\u672a\u516c\u958b\u9801\u9762\uff0c\u9032\u800c\u57f7\u884c\u7cfb\u7d71\u547d\u4ee4\u9032\u800c\u53d6\u5f97\u7ba1\u7406\u54e1\u6b0a\u9650\u53ca\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\u3002 \u5f71\u97ff\u5e73\u53f0 \u53d7\u5f71\u97ff\u4e4bBIG-IP\u7522\u54c1\u8207BIG-IQ\u7522\u54c1\u7248\u672c\u5982\u4e0b\uff1a<\/p>\n<p>1. CVE-2021-23025<\/p>\n<p>BIG-IP (All modules)<\/p>\n<p>15.0.0 &#8211; 15.1.0<\/p>\n<p>14.1.0 &#8211; 14.1.3<\/p>\n<p>13.1.0 &#8211; 13.1.3<\/p>\n<p>12.1.0 &#8211; 12.1.6<\/p>\n<p>11.6.1 &#8211; 11.6.5<\/p>\n<p>2. CVE-2021-23026<\/p>\n<p>BIG-IP (All modules)<\/p>\n<p>16.0.0 &#8211; [&#8230;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[6],"tags":[],"_links":{"self":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/23092"}],"collection":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/comments?post=23092"}],"version-history":[{"count":0,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/23092\/revisions"}],"wp:attachment":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/media?parent=23092"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/categories?post=23092"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/tags?post=23092"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}