CVE-2023-43125

CVSS 3.1 Score 8.2 of 10 (high)

Details

Published Sep 27, 2023

Updated: Oct 2, 2023

CWE ID 319

Summary

CVE-2023-43125 is a vulnerability affecting BIG-IP APM (Application Performance Management) clients. The issue allows IP traffic to bypass VPN tunnels, potentially exposing sensitive data to unauthorized parties. It should be noted that only versions of the software that are still under technical support will be evaluated for this vulnerability. This security weakness can lead to data breaches and other cybersecurity risks. Unaffected versions should be updated promptly to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

F5 BIG-IP APM

Affected Vendors

F5 Networks

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/suLW-B
https://www.cve.org/CVERecord?id=CVE-2023-43125
https://nvd.nist.gov/vuln/detail/CVE-2023-43125

Back to Vulnerability Database