CVE-2023-36858

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 2, 2023

Updated: Aug 8, 2023

CWE ID 345

Summary

CVE-2023-36858 is a newly discovered vulnerability affecting BIG-IP Edge Client for Windows and macOS. This issue involves insufficient data verification, allowing an attacker to manipulate the configured server list. If exploited, this could result in serious consequences, including redirecting traffic to malicious servers or denial-of-service attacks. Notably, software versions that have reached End of Technical Support are not evaluated for this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

F5 BIG-IP APM

Affected Vendors

F5 Networks

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sB0cwp
https://www.cve.org/CVERecord?id=CVE-2023-36858
https://nvd.nist.gov/vuln/detail/CVE-2023-36858

Back to Vulnerability Database