CERTFR-2026-AVI-0120

Vulnerability from certfr_avis - Published: 2026-02-05 - Updated: 2026-02-05

De multiples vulnérabilités ont été découvertes dans les produits F5. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products
Vendor Product Description
F5 NGINX Nginx Open Source versions 1.29.x antérieures à 1.29.5
F5 BIG-IP BIG-IP versions 17.1.x antérieures à 17.1.3.1
F5 NGINX Nginx Plus versions R36 antérieures à R36 P1
F5 BIG-IP BIG-IP Container Ingress Services for Kubernetes and OpenShift versions 2.x antérieures à 2.20.2
F5 BIG-IP BIG-IP versions 17.5.x antérieures à 17.5.1.4
F5 BIG-IP APM Clients versions 7.2.x antérieures à 7.2.6.2
F5 BIG-IP BIG-IP versions 21.x antérieures à 21.0.0.1
F5 BIG-IP BIG-IP Advanced WAF/ASM versions 17.1.x antérieures à 17.1.3
F5 NGINX Nginx Open Source versions antérieures à 1.28.2
F5 NGINX Nginx Ingress Controller versions 3.x à 5.x sans la version corrective de Nginx plus ou Nginx Open Source
F5 NGINX Nginx Instance Manager versions 2.x sans la version corrective de Nginx Open Source
F5 NGINX Nginx Plus versions R32 antérieures à R32 P4
F5 NGINX Nginx Gateway Fabric versions 1.x et 2.x sans la version corrective de Nginx plus ou Nginx Open Source
F5 NGINX Nginx Plus versions R35 antérieures à R35 P1
References
Bulletin de sécurité F5 K000156643 2026-02-04 vendor-advisory
Bulletin de sécurité F5 K000157960 2026-02-04 vendor-advisory
Bulletin de sécurité F5 K000159824 2026-02-05 vendor-advisory
Bulletin de sécurité F5 K000158931 2026-02-04 vendor-advisory
Bulletin de sécurité F5 K000159076 2026-02-04 vendor-advisory
Bulletin de sécurité F5 K000156644 2026-02-04 vendor-advisory
Bulletin de sécurité F5 K000158072 2026-02-04 vendor-advisory

Show details on source website
To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Nginx Open Source versions 1.29.x ant\u00e9rieures \u00e0 1.29.5",
      "product": {
        "name": "NGINX",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "BIG-IP versions 17.1.x ant\u00e9rieures \u00e0 17.1.3.1",
      "product": {
        "name": "BIG-IP",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "Nginx Plus versions R36 ant\u00e9rieures \u00e0 R36 P1",
      "product": {
        "name": "NGINX",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "BIG-IP Container Ingress Services for Kubernetes and OpenShift versions 2.x ant\u00e9rieures \u00e0 2.20.2",
      "product": {
        "name": "BIG-IP",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "BIG-IP versions 17.5.x ant\u00e9rieures \u00e0 17.5.1.4",
      "product": {
        "name": "BIG-IP",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "APM Clients versions 7.2.x ant\u00e9rieures \u00e0 7.2.6.2",
      "product": {
        "name": "BIG-IP",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "BIG-IP versions 21.x ant\u00e9rieures \u00e0 21.0.0.1",
      "product": {
        "name": "BIG-IP",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "BIG-IP Advanced WAF/ASM versions 17.1.x ant\u00e9rieures \u00e0 17.1.3",
      "product": {
        "name": "BIG-IP",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "Nginx Open Source versions ant\u00e9rieures \u00e0 1.28.2",
      "product": {
        "name": "NGINX",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "Nginx Ingress Controller versions 3.x \u00e0 5.x sans la version corrective de Nginx plus ou Nginx Open Source",
      "product": {
        "name": "NGINX",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "Nginx Instance Manager versions 2.x sans la version corrective de Nginx Open Source",
      "product": {
        "name": "NGINX",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "Nginx Plus versions R32 ant\u00e9rieures \u00e0 R32 P4",
      "product": {
        "name": "NGINX",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "Nginx Gateway Fabric versions 1.x et 2.x sans la version corrective de Nginx plus ou Nginx Open Source",
      "product": {
        "name": "NGINX",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    },
    {
      "description": "Nginx Plus versions R35 ant\u00e9rieures \u00e0 R35 P1",
      "product": {
        "name": "NGINX",
        "vendor": {
          "name": "F5",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-1642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-1642"
    },
    {
      "name": "CVE-2026-22549",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22549"
    },
    {
      "name": "CVE-2026-20730",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-20730"
    },
    {
      "name": "CVE-2026-22548",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22548"
    },
    {
      "name": "CVE-2026-20732",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-20732"
    }
  ],
  "initial_release_date": "2026-02-05T00:00:00",
  "last_revision_date": "2026-02-05T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0120",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-02-05T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits F5. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits F5",
  "vendor_advisories": [
    {
      "published_at": "2026-02-04",
      "title": "Bulletin de s\u00e9curit\u00e9 F5 K000156643",
      "url": "https://my.f5.com/manage/s/article/K000156643"
    },
    {
      "published_at": "2026-02-04",
      "title": "Bulletin de s\u00e9curit\u00e9 F5 K000157960",
      "url": "https://my.f5.com/manage/s/article/K000157960"
    },
    {
      "published_at": "2026-02-05",
      "title": "Bulletin de s\u00e9curit\u00e9 F5 K000159824",
      "url": "https://my.f5.com/manage/s/article/K000159824"
    },
    {
      "published_at": "2026-02-04",
      "title": "Bulletin de s\u00e9curit\u00e9 F5 K000158931",
      "url": "https://my.f5.com/manage/s/article/K000158931"
    },
    {
      "published_at": "2026-02-04",
      "title": "Bulletin de s\u00e9curit\u00e9 F5 K000159076",
      "url": "https://my.f5.com/manage/s/article/K000159076"
    },
    {
      "published_at": "2026-02-04",
      "title": "Bulletin de s\u00e9curit\u00e9 F5 K000156644",
      "url": "https://my.f5.com/manage/s/article/K000156644"
    },
    {
      "published_at": "2026-02-04",
      "title": "Bulletin de s\u00e9curit\u00e9 F5 K000158072",
      "url": "https://my.f5.com/manage/s/article/K000158072"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.