For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Mitigate Apache strut2 vulnerability, cve-2017-5638

Problem this snippet solves: F5 has updated the official KB article K43451236 on AskF5 to include an enhanced version of the iRule below that will protect your vulnerable web servers behind the BIG-...

Published Mar 07, 2017

Version 1.0

application delivery

John_Alam_45640

Historic F5 Account

Joined June 12, 2006

John_Alam_45640

Historic F5 Account

Joined June 12, 2006

Icon for Nimbostratus rank

Nimbostratus

Mar 09, 2017

FWIW, the vulnerability can be executed via GET requests, as I've seen in the Qualys report on it. I've confirmed this on some systems under my control.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)