Vulnerability CVE-2023-29240
Published: 2023-05-03

Description:

An authenticated attacker granted a Viewer or Auditor role on a BIG-IQ can upload arbitrary files using an undisclosed iControl REST endpoint.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Type:

CWE-269

 (Improper Privilege Management)

 References:
https://my.f5.com/manage/s/article/K000132719
Copyright 2026, cxsecurity.com

 

Back to Top