Action Required: CISA Issues Strong Guidance to Promptly Address Recent VMware and F5 Vulnerabilities

Yesterday, CISA published two Cybersecurity Advisories (CSA) in response to active exploitation of critical vulnerabilities impacting multiple products. One advisory was accompanied by an Emergency Directive and the other was issued to emphasize the importance of addressing the vulnerability due to its trivial exploitation. Members using impacted products (VMware and/or F5 BIG-IP) are strongly encouraged to pass this information along to IT support personnel and/or third party IT service providers to be promptly addressed.

Emergency Directive (ED) 22-03 and Cybersecurity Advisory (CSA) AA22-138B, Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control strongly encourage organizations to address multiple vulnerabilities in the following VMware products: VMware Workspace ONE Access (Access), VMware Identity Manager (vIDM), VMware vRealize Automation (vRA), VMware Cloud Foundation, vRealize Suite Lifecycle Manager. Full article

Likewise, as concern continues over the active and trivial exploitation of the recent vulnerability (CVE-2022-1388) impacting unpatched F5 BIG-IP devices, CISA and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released joint Cybersecurity Advisory (CSA) AA22-138A, Threat Actors Exploiting F5 BIG-IP CVE-2022-1388 to urge system administrators who may have not addressed or remediated the issue in a timely fashion to act now. Full article