CVE-2023-46747: Critical Authentication Bypass Vulnerability in F5 BIG-IP
Tenable
OCTOBER 27, 2023
This gave the researchers an avenue for exploitation and in their blog post, they detailed that an Apache JServ Protocol (AJP) smuggling bug was leveraged as part of the device compromise to bypass authentication and achieve code execution as the root user. 13.1.5.1 + Hotfix-BIGIP-13.1.5.1.0.20.2-ENG x 13.1.0 - 13.1.5 x 14.1.0 - 14.1.5
Let's personalize your content