CVE-2024-23603 | F5 BIG-IP Advanced WAF/BIG-IP ASM up to 15.1.9/16.1.3/17.1.0 Configuration Utility sql injection (K000138047)

Inserito da Angelo Barbosa | Feb 14, 2024 | CVE

A vulnerability classified as critical was found in F5 BIG-IP Advanced WAF and BIG-IP ASM up to 15.1.9/16.1.3/17.1.0. Affected by this vulnerability is an unknown functionality of the component Configuration Utility. The manipulation leads to sql injection.

This vulnerability is known as CVE-2024-23603. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23603 | F5 BIG-IP Advanced WAF/BIG-IP ASM up to 15.1.9/16.1.3/17.1.0 Configuration Utility sql injection (K000138047)

Post correlati

CVE-2023-46641 | 12 Step Meeting List Plugin up to 3.14.24 on WordPress server-side request forgery

CVE-2024-2768 | Campcodes Complete Online Beauty Parlor Management System 1.0 /admin/edit-services.php editid sql injection

CVE-2024-29955 | Brocade SANnav up to 2.3.0 PostgreSQL log file

CVE-2022-25777 | Mautic MST-48 server-side request forgery