{"vulnerability": "cve-2021-23031", "sightings": [{"uuid": "1b3dc465-10f4-4a35-ac94-d66eb4bf4410", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-23031", "type": "seen", "source": "https://t.me/CyberGovIL/1320", "content": "\u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05d1\u05de\u05d5\u05e6\u05e8\u05d9 BigIP/BigIQ \u05e9\u05dc \u05d7\u05d1\u05e8\u05ea Com8765 |  F5\n\n\u05d7\u05d1\u05e8\u05ea F5 \u05e4\u05e8\u05e1\u05de\u05d4 \u05dc\u05d0\u05d7\u05e8\u05d5\u05e0\u05d4 \u05d4\u05ea\u05e8\u05e2\u05d5\u05ea \u05d0\u05d1\u05d8\u05d7\u05d4 \u05e2\u05d1\u05d5\u05e8 29 \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05e9\u05d4\u05ea\u05d2\u05dc\u05d5 \u05d1\u05e6\u05d9\u05d5\u05d3 \u05de\u05e1\u05d5\u05d2 BigIP/BigIQ \u05de\u05ea\u05d5\u05e6\u05e8\u05ea\u05d4.\n\n13 \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05de\u05e1\u05d5\u05d5\u05d2\u05d5\u05ea \u05d1\u05e1\u05d9\u05d5\u05d5\u05d2 \u05d2\u05d1\u05d5\u05d4. \u05de\u05ea\u05d5\u05db\u05df, \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d0\u05d7\u05ea \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d4\u05d9\u05d5\u05ea \u05e7\u05e8\u05d9\u05d8\u05d9\u05ea \u05d1\u05d4\u05d9\u05e0\u05ea\u05df \u05d4\u05e4\u05e2\u05dc\u05d4 \u05e9\u05dc \u05d4\u05e6\u05d9\u05d5\u05d3 \u05d1-Appliance Mode (CVE-2021-23031).\n\n\u05de\u05d5\u05de\u05dc\u05e5 \u05dc\u05d1\u05d7\u05d5\u05df \u05d0\u05ea \u05e2\u05d3\u05db\u05d5\u05e0\u05d9 \u05d4\u05d0\u05d1\u05d8\u05d7\u05d4 \u05d4\u05e8\u05dc\u05d5\u05d5\u05e0\u05d8\u05d9\u05d9\u05dd \u05dc\u05e6\u05d9\u05d5\u05d3 \u05e9\u05d1\u05e8\u05e9\u05d5\u05ea\u05db\u05dd, \u05d5\u05dc\u05d4\u05ea\u05e7\u05d9\u05e0\u05dd \u05d1\u05d4\u05e7\u05d3\u05dd \u05d4\u05d0\u05e4\u05e9\u05e8\u05d9.", "creation_timestamp": "2021-08-29T12:28:19.000000Z"}, {"uuid": "7d87c789-e723-431f-af58-6f9951956a88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-23031", "type": "seen", "source": "https://t.me/cibsecurity/28838", "content": "\u203c CVE-2021-23031 \u203c\n\nOn version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.1, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and 11.6.x before 11.6.5.3, an authenticated user may perform a privilege escalation on the BIG-IP Advanced WAF and ASM Configuration utility. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-14T22:23:20.000000Z"}, {"uuid": "84f6db5b-8102-449e-9744-f09b960530b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-23031", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=636", "content": "", "creation_timestamp": "2026-03-17T15:05:46.723375Z"}, {"uuid": "6388746b-a180-44ee-9cb4-b44b87e3d235", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-23031", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=636", "content": "", "creation_timestamp": "2021-08-26T04:00:00.000000Z"}, {"uuid": "5735523a-75e9-421e-80ec-b797e88fdd5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-23031", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityIL/4999", "content": "\u05d7\u05d5\u05dc\u05e9\u05d4 \u05e7\u05e8\u05d9\u05d8\u05d9\u05ea \u05d1\u05de\u05d5\u05e6\u05e8\u05d9 F5 \u05de\u05d0\u05e4\u05e9\u05e8\u05ea \u05dc\u05ea\u05d5\u05e7\u05e3, \u05e9\u05d4\u05e6\u05dc\u05d9\u05d7 \u05dc\u05e2\u05d1\u05d5\u05e8 \u05ea\u05d4\u05dc\u05d9\u05da \u05d4\u05d6\u05d3\u05d4\u05d5\u05ea \u05dc\u05de\u05e2\u05e8\u05db\u05ea, \u05dc\u05e7\u05d1\u05dc \u05d2\u05d9\u05e9\u05ea \u05e0\u05d9\u05d4\u05d5\u05dc \u05de\u05dc\u05d0\u05d4.\n\n\u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05e4\u05d5\u05e8\u05e1\u05de\u05d4 \u05d1\u05de\u05e1\u05d2\u05e8\u05ea \u05d4\u05e2\u05d3\u05db\u05d5\u05df \u05e9\u05e4\u05d9\u05e8\u05e1\u05de\u05d4 \u05d4\u05d7\u05d5\u05d3\u05e9 \u05d7\u05d1\u05e8\u05ea F5 \u05d4\u05db\u05d5\u05dc\u05dc \u05d8\u05d9\u05e4\u05d5\u05dc \u05d1-30 \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05e9\u05d5\u05e0\u05d5\u05ea.\n\u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05d4\u05e7\u05e8\u05d9\u05d8\u05d9\u05ea (CVE-2021-23031) \u05e8\u05dc\u05d5\u05d5\u05e0\u05d8\u05d9\u05ea \u05dc\u05de\u05d5\u05e6\u05e8\u05d9 WAF \u05d5-ASM \u05d5\u05ea\u05e7\u05e4\u05d4 \u05d2\u05dd \u05d1\u05de\u05db\u05d5\u05e0\u05d5\u05ea \u05d5\u05d9\u05e8\u05d8\u05d5\u05d0\u05dc\u05d9\u05d5\u05ea \u05d5\u05d2\u05dd \u05d1\u05de\u05db\u05d5\u05e0\u05d5\u05ea \u05e4\u05d9\u05d6\u05d9\u05d5\u05ea.\n\n\u05d4\u05e4\u05e8\u05e1\u05d5\u05dd \u05e9\u05dc \u05d7\u05d1\u05e8\u05ea F5 \u05db\u05d5\u05dc\u05dc \u05d4\u05d2\u05e8\u05e1\u05d0\u05d5\u05ea \u05d4\u05ea\u05e7\u05d9\u05e0\u05d5\u05ea \u05de\u05e4\u05d5\u05e8\u05e1\u05dd \u05db\u05d0\u05df\n\nhttps://t.me/CyberSecurityIL/1263\n\nhttps://www.bleepingcomputer.com/news/security/critical-f5-big-ip-bug-impacts-customers-in-sensitive-sectors/", "creation_timestamp": "2021-08-26T11:47:18.000000Z"}]}