CVE-2023-23552

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 13.1.x F5 BIG-IP versions 14.1.x through 14.1.5.3 F5 BIG-IP versions 15.1.0 through 15.1.8 F5 BIG-IP versions 16.1.x through 16.1.3.3 F5 BIG-IP versions 17.0.x through 17.0.0.2

Description When a BIG-IP Advanced WAF or BIG-IP ASM security policy is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization.

Recommendations For versions 13.1.x, consider disabling the BIG-IP Advanced WAF or BIG-IP ASM security policy as a temporary workaround until a patch is available. For versions 14.1.x through 14.1.5.3, consider disabling the BIG-IP Advanced WAF or BIG-IP ASM security policy as a temporary workaround until a patch is available. For versions 15.1.0 through 15.1.8, consider disabling the BIG-IP Advanced WAF or BIG-IP ASM security policy as a temporary workaround until a patch is available. For versions 16.1.x through 16.1.3.3, consider disabling the BIG-IP Advanced WAF or BIG-IP ASM security policy as a temporary workaround until a patch is available. For versions 17.0.x through 17.0.0.2, consider disabling the BIG-IP Advanced WAF or BIG-IP ASM security policy as a temporary workaround until a patch is available.