CVE-2023-22283

Name of the Vulnerable Software and Affected Versions BIG-IP Edge Client for Windows versions 7.1.5 through 7.2.3.1

Description The issue is related to a DLL hijacking vulnerability in the BIG-IP Edge Client for Windows. Exploitation of this vulnerability may allow an attacker to execute arbitrary commands. User interaction and administrative privileges are required to exploit this vulnerability, as the victim user needs to run the executable on the system and the attacker requires administrative privileges for modifying the files in the trusted search path.

Recommendations For versions 7.1.5 through 7.2.3.1, update to a version after 7.2.3.1 to resolve the issue. As a temporary workaround, consider restricting access to the trusted search path to minimize the risk of exploitation. Additionally, avoid running the executable on the system unless necessary, and ensure that administrative privileges are properly secured to prevent unauthorized modifications.