F5 Networks Big-IP Application Delivery Services appliance contains a Key Distribution Center (KDC) spoofing vulnerability, researchers disclosed. The vulnerability exists in one of the core software components of the appliance: The Access Policy Manager (APM) It manages and enforces access policies, i.e., making sure all users are authenticated and authorized to use a given application. The potential impact could be significant: F5 provides enterprise networking to some of the largest tech companies in the world, including Facebook, Microsoft and Oracle.
Source: https://threatpost.com/f5-big-ip-security-bypass/165735/