Forum Discussion

MVP

Jun 04, 2022

iRule to mitigate CVE-2022-26134 (Confluence)

On June 2, 2022, Atlassian published a security advisory for CVE-2022-26134, a critical unauthenticated remote code execution vulnerability in Confluence. There is a patch available from Atlassian or...

application delivery

security

Daniel_Wolf

MVP

Jun 04, 2022

Seems meanwhile a knowledgebase article has been published.

K01204888: Mitigate the Atlassian Confluence vulnerability with the BIG-IP system

In case you have ASM or AWAF and you have enforced the signatures mentioned in K01204888, you are protected. In case you don't have ASM or AWAF my iRule might still help.

Recent Discussions

F5 Rseries HA
Apr 25, 2024 Amr_Ali
Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n
Apr 25, 2024 R13
Can iRule be used to perform exception of IPI category based on Geolocation
Apr 25, 2024 Nishal_Rai
Can iRule mask the payload content on event logs of security
Apr 25, 2024 Nishal_Rai
minimum tmos software version for connect CIS (openshift)
Apr 25, 2024 neeeewbie

Forum Discussion

iRule to mitigate CVE-2022-26134 (Confluence)

Recent Discussions

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Related Content

CitrixBleed Mitigation CVE-2023-4966

F5 Distributed Cloud L3-L7 DDoS Mitigation

Mitigating OWASP API Security risks using BIG-IP

Mitigating OWASP API Security Top 10 risks using F5 NGINX App Protect

Mitigation of OWASP API Security Risk: Unsafe Consumption of API using F5 XC Platform