4 matches found
CVE-2023-43124
creationtimestamp| type| source ---|---|--- 2023-09-27 20:35:55+00:00| seen| https://t.me/cibsecurity/71132...
CVE-2023-43124
CVE-2023-43124 affects BIG-IP APM clients, allowing traffic to bypass the VPN tunnel (TunnelCrack). This can enable an adjacent attacker to observe cleartext traffic if a client connects via a malicious network device. The security advisory K000136907 from F5 lists vulnerable branches and fixes: ...
K000136907: BIG-IP APM Clients TunnelCrack vulnerability CVE-2023-43124
Security Advisory Description BIG-IP APM clients may send IP traffic outside of the VPN tunnel. CVE-2023-43124 Impact If a client machine connects to a malicious adjacent network device, such as a router or Wi-Fi hotspot, an attacker may be able to trick the client into sending IP traffic outside...
F5 Networks BIG-IP : BIG-IP APM Clients TunnelCrack vulnerability (K000136907)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000136907 advisory. - BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which have reached End of...