BIND vulnerability CVE-2024-1975 and CVE-2024-1737

Question

Hello,These vulnerabilities related to BIND.https://kb.isc.org/docs/cve-2024-1737https://kb.isc.org/docs/cve-2024-1975Checked that the latest F5 version also using the affected BIND version.https://my.f5.com/manage/s/article/K11398383Please help to confirm if F5 will be affected to above vulnerabilities or not, if yes, please provide solution or mitigation measures.

aswin_mk · Answer

Please find the solution for CVE-2024-1737

https://my.f5.com/manage/s/article/K000140732

FyI - DNS modules only vulnerable relating this vulnerability. Other CVE not having any document still.

aswin_mk · Answer

Please find the details of CVE-2024-1975BIND vulnerability CVE-2024-1975 (f5.com)

amine_kadimi · Answer

Solution is following the best practice of not using the F5 Bind to directly resolve DNS, instead use Wide IP (GSLB) and DNS Express.
If you are not using F5 DNS you may not be affected.
&nbsp;

Forum Discussion

BIND vulnerability CVE-2024-1975 and CVE-2024-1737

Recent Discussions

ip x-forwarding

ports are showing open on online scanning tool

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Related Content

Coordinated Vulnerability Disclosure: A Balanced Approach

Windows Critical RCE Vulnerability, Malicious Solana-py, and EDRKillShifter

Enhancing Software Security with Rust: A Solution to Common Vulnerabilities

Cyberattacks On Embassies, Threat Actor Using ChatGPT To Write Malware, and MMS Vulnerabilities

OWASP Automated Threats - OAT-014 Vulnerability Scanning

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS