Forum Discussion

Cirrus

Dec 11, 2021

CVE-2021-44228 irule mitigation?

Hello there, Is there any iRule mitigation for the CVE-2021-44228? In support askf5 there is a mitigation using ASM but if I don't have it yet. Could I use an iRule? Regards, Daniel

MVP

Last update from my side. F5 has provided iRules to mitigate CVE-2021-44228 here: https://support.f5.com/csp/article/K19026212

Due to a more strict regex the F5 iRule will also protect you against the recently observed more obfuscated variants such as:

I'm done.

Daniel_Wolf

MVP

Dec 14, 2021

Hi @danielm,

usually I am not asking for this, but the Log4shell issue is kind of important.

Could you please mark this question as "Answered"? Under each answer there is "Select As Best", which is equivalent to "Answered". Just select my above answer as best. This way other community members can find the iRule mitigation for CVE-2021-44228 faster and easier.

Thanks in advance & KR

Daniel

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

CVE-2021-44228 irule mitigation?

Recent Discussions

F5 - AS3 - BIGIQ / BIGIP SchemaVersion Missunderstanding

F5OS API - not able to create vlan

F5 APM - limiting access to the bandwidth for network Access

Change LB priority based on status

High CPU utilization (100%).

Related Content

Mitigating OWASP API Security Top 10 risks using F5 NGINX App Protect

Vulnerability Mitigation

Open redirect mitigation

Mitigating recent HTTP/2 DoS vulnerabilities with BIG-IP

Mitigating Unwanted Communication On Your Service Network

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS