3 matches found
CVE-2021-22995
On all 7.x and 6.x versions fixed in 8.0.0, BIG-IQ high availability HA when using a Quorum device for automatic failover does not implement any form of authentication with the Corosync daemon. Note: Software versions which have reached End of Software Development EoSD are not evaluated...
K13155201: BIG-IQ HA vulnerability CVE-2021-22995
Security Advisory Description BIG-IQ high availability HA when using a Quorum device for automatic failover does not implement any form of authentication with the Corosync daemon. CVE-2021-22995 Impact There are iptables firewall rules in place which prevent arbitrary attackers from connecting...
CVE-2021-22995
CVE-2021-22995 concerns BIG-IQ high availability (HA) when using a Quorum device for automatic failover. The root cause is that the Corosync daemon authentication is not implemented, allowing unauthenticated interaction in affected setups. Applicable products: BIG-IQ HA configurations (7.x/6.x li...