CVE-2022-25946

Name of the Vulnerable Software and Affected Versions F5 BIG-IP Advanced WAF, ASM, and ASM versions 11.6.x through 16.1.x F5 BIG-IP Guided Configuration (GC) versions prior to 9.0

Description An authenticated attacker with Administrator role privilege may be able to bypass Appliance mode restrictions due to a missing integrity check in F5 BIG-IP Guided Configuration when running in Appliance mode.

Recommendations For F5 BIG-IP Advanced WAF, ASM, and ASM versions 11.6.x through 16.1.x, consider updating to a version that includes the necessary integrity check to prevent Appliance mode restriction bypass. For F5 BIG-IP Guided Configuration (GC) versions prior to 9.0, update to version 9.0 or later to include the necessary integrity check. As a temporary workaround, consider restricting Administrator role privileges to minimize the risk of exploitation.