6 matches found
CVE-2021-22981
On all versions of BIG-IP 12.1.x and 11.6.x, the original TLS protocol includes a weakness in the master secret negotiation that is mitigated by the Extended Master Secret EMS extension defined in RFC 7627. TLS connections that do not use EMS are vulnerable to man-in-the-middle attacks during...
K09121542: BIG-IP SSL/TLS vulnerability CVE-2021-22981
Security Advisory Description The original TLS protocol includes a weakness in the master secret negotiation that is mitigated by the Extended Master Secret EMS extension defined in RFC 7627. TLS connections that do not use EMS are vulnerable to man-in-the-middle attacks during renegotiation...
CVE-2021-22981
creationtimestamp| type| source ---|---|--- 2021-02-12 20:43:53+00:00| seen| https://t.me/cibsecurity/23556...
CVE-2021-22981
CVE-2021-22981 affects BIG-IP (LTM, AAM, and other modules) on 12.1.x and 11.6.x where TLS renegotiation can be exploited if EMS (RFC 7627) is not used; this enables man‑in‑the‑middle attacks via the master-secret negotiation (Triple Handshake). The issue is caused by the original TLS protocol la...
CVE-2021-22981
On all versions of BIG-IP 12.1.x and 11.6.x, the original TLS protocol includes a weakness in the master secret negotiation that is mitigated by the Extended Master Secret EMS extension defined in RFC 7627. TLS connections that do not use EMS are vulnerable to man-in-the-middle attacks during...
F5 Networks BIG-IP : BIG-IP SSL/TLS vulnerability (K09121542)
The version of F5 Networks BIG-IP installed on the remote host is prior to 13.0.0. It is, therefore, affected by a vulnerability as referenced in the K09121542 advisory. - On all versions of BIG-IP 12.1.x and 11.6.x, the original TLS protocol includes a weakness in the master secret negotiation...