Forum Discussion

Cirrus

Sep 13, 2019

Can the F5 Mitigate the HTTP/2 vulnerabilities?

Hi,

We are considering implementing HTTP/2 in our environment at the moment. In August a number of DoS vulnerabilities were identified in HTTP/2. If we make the change for HTTP/2 on the F5, does the F5 do anything to mitigate the risk?

https://nakedsecurity.sophos.com/2019/08/19/netflix-finds-multiple-http2-dos-flaws/

Are there ASM signatures that protect against these issues? If so, what about protection on APM if we add HTTP/2 there?

Any information would be appreciated.

No RepliesBe the first to reply

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Can the F5 Mitigate the HTTP/2 vulnerabilities?

Recent Discussions

Background Tasks

Which process is consuming higher CPU

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Client SSL Profile set to Require Client Certificate breaks RDP in APM

Related Content

The HTTP/2 CONTINUATION frame attack

Mitigating recent HTTP/2 DoS vulnerabilities with BIG-IP

Re: Mitigation of OWASP API6: 2019 Mass Assignment vulnerability using F5 Distributed Cloud Platform

Traffic Management User Interface Vulnerability: The Fix and Temporary Mitigation Options

Vulnerability Mitigation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS