On BIG-IP Advanced WAF and BIG-IP ASM version 16.0.x before 16.0.1.2 and 15.1.x before 15.1.3 and NGINX App Protect on all versions before 3.5.0, when a cross-site request forgery (CSRF)-enabled policy is configured on a virtual server, an undisclosed HTML response may cause the bd process to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: f5

Published:

Updated: 2024-08-03T18:58:26.361Z

Reserved: 2021-01-06T00:00:00

Link: CVE-2021-23050

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-09-14T13:15:11.093

Modified: 2024-11-21T05:51:13.403

Link: CVE-2021-23050

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.