Forum Discussion
Intothecloud
Altocumulus
AltocumulusASM NO SIGNATURE AVAILABLE FOR CVE-2021-21985
We have the latest signature applied on ASM but while filtering on ASM signtures I can't find any signature for CVE-2021-21985. How can we make sure that signature for CVE-2021-21985 is published by...
OK, I heard straight from F5 SIRT that, 'Yep that signature exists in ASM since 2021/6/11.'
Not sure about the ASM Sig package but this is the page from VMware addressing that CVE - with the fixed version. Apologies if you're already aware of this: https://www.vmware.com/security/advisories/VMSA-2021-0010.html
IntothecloudYes , I have gone through the KB article , the issue is this VMware servers services are behind the F5 ASM and ASM block policy already applied to this servers but still our SIEM solution captured the exploit attempt matching ID CVE-2021-21985 so customer wanted to know why exploit attempt not blocked by the ASM when i checked the ASM signature i can't find any signature for this particular CVE.
