CVE-2021-23032: 
F5 BIG-IP Virtual Edition vulnerability analysis and mitigation

CVE-2021-23032 is a high-severity vulnerability (CVSS score: 7.5) affecting F5's BIG-IP DNS module. The vulnerability was disclosed in August 2021 and affects multiple versions of BIG-IP, including versions 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x and 12.1.x (Hacker News, CVE Mitre).

When a BIG-IP DNS system is configured with non-default Wide IP and pool settings, undisclosed DNS responses can cause the Traffic Management Microkernel (TMM) to terminate (CVE Mitre).

The vulnerability can lead to a denial-of-service condition through the termination of the Traffic Management Microkernel (TMM), potentially disrupting DNS services on affected BIG-IP systems (Bleeping Computer).

F5 has released patches for the affected versions. Organizations should upgrade to version 16.1.0, 15.1.3.1, or 14.1.4.4 depending on their current version track (Bleeping Computer).

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued a security advisory encouraging users and administrators to review F5's security advisory and to update the software or apply mitigations as soon as possible (Threatpost).