{"id": "CVE-2023-43746", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "f5sirt@f5.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.8, "exploitabilityScore": 2.3}]}, "published": "2023-10-10T13:15:21.783", "references": [{"url": "https://my.f5.com/manage/s/article/K41072952", "tags": ["Vendor Advisory"], "source": "f5sirt@f5.com"}, {"url": "https://my.f5.com/manage/s/article/K41072952", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "f5sirt@f5.com", "description": [{"lang": "en", "value": "CWE-267"}]}], "descriptions": [{"lang": "en", "value": "\nWhen running in Appliance mode, an authenticated user assigned the Administrator role may be able to bypass Appliance mode restrictions, utilizing BIG-IP external monitor on a BIG-IP system.\u00a0 A successful exploit can allow the attacker to cross a security boundary.\u00a0 Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated."}, {"lang": "es", "value": "Cuando se ejecuta en modo Appliance, un usuario autenticado al que se le haya asignado la funci\u00f3n de Administrator puede evitar las restricciones del modo Appliance, utilizando el monitor externo BIG-IP en un sistema BIG-IP. Un exploit exitoso puede permitir al atacante cruzar un l\u00edmite de seguridad. Nota: Las versiones de software que han llegado al End of Technical Support (EoTS) no se eval\u00faan."}], "lastModified": "2024-11-21T08:24:42.570", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94E0B611-902C-46BC-A099-881398828F0B", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F11226F6-9080-4126-ACBD-7211A2746214", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8F16422-A642-4614-96F2-E5B4877E8206", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AF2DF45-D15E-4239-A66C-9F8A924E383A", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6DD4CF11-44E9-4596-9397-AF7DBD81277B", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE979976-11C7-4AFF-8BE4-A094CC9C39CF", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34A88673-CDD5-48FC-9491-6852324E26EA", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D82BCD8-136A-476C-AC86-710CA8B32EB7", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "377DE308-CF91-488A-B296-30A3B09451D3", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F53FFE68-BE06-4F16-8C33-58711E86E254", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C0FE692A-CD63-4354-B599-2F47EEEFDD37", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2F02EC0-E6C2-4E00-9804-043982D88BCE", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9BB7368-B6F8-462F-B17F-02CFBB0EE310", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "672067B7-C838-4F0B-B3D0-E85F71715B0A", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4C17D18-1172-4396-9099-F1F5EAEACE5A", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86BE84EA-63BC-49A2-8004-830255114059", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7280AA3-6EB0-4D9B-895B-B6883071740E", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95617B72-E7D8-44D2-AFF2-976595A72AFA", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7480CF69-7BEC-4582-85BB-58A6CBC51171", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16795277-E8E2-4713-BD65-207655546649", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0835E39B-F21E-4231-A4B9-5D511FF1B87A", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6EDE9EC9-8079-434F-8510-3DB4E3051BCA", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F005EFFD-3A40-4762-B0D6-8760C406130F", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8705476E-A246-4B57-A0E1-FD626C1B0DE5", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C3AA014-6241-4EBA-BF9F-65D3D869C6E0", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18CD2C82-0080-495E-8A11-957E0C182A48", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C508A36-C041-406C-9C8A-A396C6EDC750", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D263C0C1-55C6-4AC3-B738-9F099C583AA0", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E912382D-131E-40F2-A337-72D6F2A3AD23", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91ED3C5E-92E8-44CF-AA99-A38C60AE677E", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F16999CA-0EE1-4F56-AF60-8F002B5F7CCE", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47962DDC-899F-4A98-ABF7-CC8A1AE7FF1C", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46A7F81E-84A2-4304-B18F-53E5CDBCEA43", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3FB67297-BDD9-4D15-9247-0F1A589D7450", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4958167-AB1F-4458-A06B-1B2DA313EEBD", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D982C3E6-43DE-4AA8-889F-044E70C7FCB2", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A96D578-675E-4B63-851F-CB71A92B25B1", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "944B8F9C-E5C6-4DA8-BF2B-1C0B6A388BC4", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7DB6C626-BA78-4C06-8582-BFFCDF957429", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2765BBF9-8450-4889-9961-2C6DE64656F4", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCFAFFAC-000C-414D-83CF-B8B2C529D9CF", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E68BFC75-6977-4644-A169-48263B896849", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDD85839-D8F4-4651-ABAC-9F092955785B", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1871634A-7609-4D01-8469-3D86F36DC19D", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "603324D6-FE7A-4209-B92B-94EF09AB5FF2", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0D0A53D-5911-4406-8264-FC85ADDDD007", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "220FD008-8919-48D4-84CF-8C4D99C3C474", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1935A1CF-50B2-4572-AA06-3504DB25B954", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57114710-113A-4F2E-A5C2-07AB7BBC7354", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "077EBF51-B843-48B7-B31C-4BE1C99CE6F7", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5EAC82FA-41CC-425A-89A0-CC9E2BF678EE", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8A0A03A5-3120-4D8D-A580-E7546A740D61", "versionEndIncluding": "14.1.5", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "338010BF-EFC6-42B9-9F12-865C48D421EB", "versionEndExcluding": "15.1.9", "versionStartIncluding": "15.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14776B4F-DDEC-4B22-82A5-EA231B3895F0", "versionEndExcluding": "16.1.4", "versionStartIncluding": "16.1.0"}], "operator": "OR"}]}], "sourceIdentifier": "f5sirt@f5.com"}