CVE-2021-22986
F5 BIG-IP and BIG-IQ Centralized Management iControl REST Remote Code Execution Vulnerability
⚠ KEVEPSS 94.5%
Description
F5 BIG-IP and BIG-IQ Centralized Management contain a remote code execution vulnerability in the iControl REST interface that allows unauthenticated attackers with network access to execute system commands, create or delete files, and disable services.
How to fix CVE-2021-22986
No package mapping is available — consult the references below for vendor-specific guidance.
Is CVE-2021-22986 being exploited?
Yes — CVE-2021-22986 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (0)
No package mapping in OSV.