PT-2023-26952 · F5 · Big-Ip Apm

Published

2023-10-10

Updated

2023-10-16

CVE-2023-39447

CVSS v3.1

4.4

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions BIG-IP APM (affected versions not specified)

Description When BIG-IP APM Guided Configurations are configured, undisclosed sensitive information may be logged in the restnoded log. Note that software versions which have reached End of Technical Support (EoTS) are not evaluated.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

CVE-2023-39447

Affected Products

Big-Ip Apm

PT-2023-26952 · F5 · Big-Ip Apm

CVE-2023-39447

Weakness Enumeration

Related Identifiers

Affected Products

References · 4