F5 BIG-IP Access Control Error Vulnerability (CNVD-2023-75601)

2023-10-1100:00:00

China National Vulnerability Database

www.cnvd.org.cn

big-ip

access control

vulnerability

attackers

security perimeter

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.5%

JSON

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management and other functions. An access control error vulnerability exists in F5 BIG-IP, which can be exploited by attackers to cross the security perimeter.

CPENameOperatorVersion
f5 big-ip (all modules) >=13.1.0，le13.1.5
f5 big-ip (all modules) >=16.1.0，le16.1.3
f5 big-ip (all modules) >=14.1.0，le14.1.5
f5 big-ip (all modules) >=15.1.0，le15.1.8

Name	Operator	Version
f5 big-ip (all modules) >=13.1.0，	le	13.1.5
f5 big-ip (all modules) >=16.1.0，	le	16.1.3
f5 big-ip (all modules) >=14.1.0，	le	14.1.5
f5 big-ip (all modules) >=15.1.0，	le	15.1.8