BIG-IP

F5 BIG-IP Remote Code Execution Vulnerability (CVE-2023-46747) Notification

October 31, 2023

Overview Recently, NSFOCUS CERT monitored that F5 had released a security announcement to fix a remote code execution vulnerability in BIG-IP (CVE-2023-46747). Due to the problem of F5 BIG-IP forwarding AJP protocol through Apache httpd, requests were smuggled, which could bypass permission verification. Unauthenticated remote attackers can access the BIG-IP system through the BIG-IP management […]

Search

Subscribe to the NSFOCUS Blog