Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

K35253541 doubts

F5_LB_Eng
Cirrostratus
Cirrostratus

‎12-Dec-2022 01:43 - edited ‎12-Dec-2022 01:53

K35253541 - java vulnerability come under tmm affected or mgmt- interface affected 

 

 

Labels:
0 Kudos
2 REPLIES 2

F5_LB_Eng
Cirrostratus
Cirrostratus

‎12-Dec-2022 01:44

K35253541 - java vulnerability come under tmm affected or mgmt- interface affected 

0 Kudos

mihaic
MVP
MVP

‎12-Dec-2022 02:22 - edited ‎12-Dec-2022 02:24

Right now there is no fix. No version to upgrade to.

The vulnerabilities are usually for the device itself.

So management interface is affected. 

But you can use self-ip also to manage the device. And that go through tmm.

look at the self-ip port-lockdown option. if is set to default it means it allows a bunch of ports, including https.

https://support.f5.com/csp/article/K17333

you might want to choose none and use only management interface for administrative stuff.

Copyright © 2023 Khoros, LLC