Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Apache Log4j2 (CVE-2021-44228) mitigation iApp

Problem this snippet solves: There is a CVE released related to Apache log4j, which could be a vulnerability on a server located behind the BIG-IP. F5 SIRT have helpfully created an iRule to miti...
Updated Feb 08, 2022
Version 2.0
apache
big-ip
irules
log4j2
security
PeteWhite's avatar
Icon for Employee rankEmployee
I work in the EMEA F5 Professional Services team. I generally deal Service Provider stuff because i come from that background ( 12 years working for Nokia Networks prior to joining F5 in 2013 )
View Profile
PeteWhite's avatar
PeteWhite
Icon for Employee rankEmployee
Dec 21, 2021

Hi Juan, yes it can be applied without ASM. This is an iRule that is assigned to the virtual server directly. You can obviously do this via the ASM Attack Signatures as well, which would probably be more performant.