vulnerability
F5: CVE-2023-38419: K000133472: BIG-IP and BIG-IQ iControl SOAP vulnerability CVE-2023-38419
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:N/I:N/A:P) | Aug 2, 2023 | Jun 17, 2026 | Jun 17, 2026 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:N/I:N/A:P)
Published
Aug 2, 2023
Added
Jun 17, 2026
Modified
Jun 17, 2026
Description
An authenticated attacker with guest privileges or higher can cause the iControl SOAP process to terminate by sending undisclosed requests.
Solution
f5-bigip-upgrade-latest
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.