CVE-2023-46747

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to 17.1.0 F5 BIG-IP Access Policy Manager versions prior to 17.1.0 F5 BIG-IP Advanced Firewall Manager versions prior to 17.1.0 F5 BIG-IP Analytics versions prior to 17.1.0 F5 BIG-IP Application Acceleration Manager versions prior to 17.1.0 F5 BIG-IP Application Security Manager versions prior to 17.1.0 F5 BIG-IP Domain Name System versions prior to 17.1.0 F5 BIG-IP Fraud Protection Service versions prior to 17.1.0 F5 BIG-IP Hybrid Defender versions prior to 17.1.0 F5 BIG-IP Link Controller versions prior to 17.1.0 F5 BIG-IP Local Traffic Manager versions prior to 17.1.0 F5 BIG-IP Policy Enforcement Manager versions prior to 17.1.0 F5 BIG-IP versions from 13.1.5 to 17.1.0

Description A critical vulnerability in the F5 BIG-IP configuration utility allows an attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands. The vulnerability is related to the configuration utility component and has been assigned a CVSS score of 9.8. It is possible for an attacker to bypass configuration utility authentication using undisclosed requests. The issue has been exploited in the wild, with reports of attackers using it to gain unauthorized access to systems.

Recommendations To resolve the issue for each affected version, apply the applicable Engineering Hotfix released by F5. For F5 BIG-IP versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Access Policy Manager versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Advanced Firewall Manager versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Analytics versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Application Acceleration Manager versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Application Security Manager versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Domain Name System versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Fraud Protection Service versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Hybrid Defender versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Link Controller versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Local Traffic Manager versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP Policy Enforcement Manager versions prior to 17.1.0, install the hotfix to prevent exploitation. For F5 BIG-IP versions from 13.1.5 to 17.1.0, install the hotfix to prevent exploitation. As a temporary workaround, consider restricting access to the management port and self IP addresses to minimize the risk of exploitation.