vulnerability
F5 Networks: CVE-2023-38419: K000133472: BIG-IP and BIG-IQ iControl SOAP vulnerability CVE-2023-38419
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
4 | (AV:N/AC:L/Au:S/C:N/I:N/A:P) | Aug 2, 2023 | Dec 7, 2023 | Jan 28, 2025 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:N/I:N/A:P)
Published
Aug 2, 2023
Added
Dec 7, 2023
Modified
Jan 28, 2025
Description
An authenticated attacker with guest privileges or higher can cause the iControl SOAP process to terminate by sending undisclosed requests. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Solution
f5-big-ip-upgrade-latest

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.