CVE-2023-43746

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to the fixed version

Description The issue is related to insecure privilege management in BIG-IP Access Policy Manager, BIG-IP Advanced Firewall Manager, BIG-IP Application Security Manager, BIG-IP Domain Name System, and BIG-IP Local Traffic Manager. An authenticated user assigned the Administrator role may be able to bypass Appliance mode restrictions, utilizing BIG-IP external monitor on a BIG-IP system. A successful exploit can allow the attacker to cross a security boundary, potentially impacting the confidentiality and integrity of protected information.

Recommendations For versions prior to the fixed version, consider disabling the Administrator role or restricting access to the BIG-IP external monitor as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.