GitHub

20231023002-BIG-IP-Configuration-utility-vulnerability.md

The WA SOC has become aware of vulnerability related to the BIG-IP Configuration Utility, which is a browser-based user interface service. An authenticated attacker may exploit this vulnerability by ...
SecurityWeek

Attackers Exploiting Critical F5 BIG-IP Vulnerability

Exploitation of a critical vulnerability (CVE-2023-46747) in F5’s BIG-IP product started less than five days after public disclosure and PoC exploit code was published. Exploitation of a recently ...
Bleeping Computer

F5 fixes BIG-IP auth bypass allowing remote code execution attacks

A critical vulnerability in the F5 BIG-IP configuration utility, tracked as CVE-2023-46747, allows an attacker with remote access to the configuration utility to perform unauthenticated remote code ...
SecurityWeek

F5 BIG-IP Updates Patch High-Severity Elevation of Privilege Vulnerability

F5 has released patches for a high-severity elevation of privilege vulnerability in BIG-IP and a medium-severity bug in BIG-IQ. F5 on Wednesday published its October 2024 quarterly security ...
GitHub

config utility allows inteface ip configuration with invalid values for ip / mask

config interface ip add Ethernet32 198.18.32.0/24 config interface ip add Ethernet34 198.18.34.255/24 config interface ip add Ethernet40 10.0.0.0/7 config interface ip add Ethernet42 0.0.0.1/24 config ...