F5 Releases Security Update for Critical Vulnerability in BIG-IP

Security update addresses critical remote code execution (RCE) vulnerability in BIG-IP

Threat ID:: CC-4399
Threat Severity:: Medium
Published:: 27 October 2023 1:37 PM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Security update addresses critical remote code execution (RCE) vulnerability in BIG-IP

Affected platforms

The following platforms are known to be affected:

F5 BIG-IP (All Modules)

Versions affected:

17.1.0
16.1.0 - 16.1.4
15.1.0 - 15.1.10
14.1.0 - 14.1.5
13.1.0 - 13.1.5

Threat details

Introduction

F5 have released a security update addressing a critical remote code execution (RCE) vulnerability within BIG-IP. This vulnerability has a CVSSv3 score of 9.8 and is being tracked as CVE-2023-46747.

Undisclosed requests may bypass configuration utility authentication, allowing an attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands.

Exploitation in the wild for CVE-2023-46747

F5 have stated that this vulnerability has been observed being actively exploited in the wild.

Threat updates

Date	Update
1 Nov 2023	Exploitation in the wild for CVE-2023-46747 This article has been updated to reflect this change.
31 Oct 2023	Exploitation proof-of-concept publicly released for CVE-2023-46747 This article has been updated to reflect this change.

Remediation advice

Affected organisations are encouraged to review the F5 Security Advisory and apply any relevant updates or mitigations.

Definitive source of threat updates

https://my.f5.com/manage/s/article/K000137353

CVE Vulnerabilities

Status Published

CVE-2023-46747

Last edited: 1 November 2023 3:16 pm