An improper certificate validation vulnerability exists in the BIG-IP Edge Client for Windows and macOS and may allow an attacker to impersonate a BIG-IP APM system.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Advisories
Source ID Title
EUVD EUVD EUVD-2023-28479 An improper certificate validation vulnerability exists in the BIG-IP Edge Client for Windows and macOS and may allow an attacker to impersonate a BIG-IP APM system.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 29 Jan 2025 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: f5

Published:

Updated: 2025-01-29T21:41:27.510Z

Reserved: 2023-04-14T23:08:02.602Z

Link: CVE-2023-24461

cve-icon Vulnrichment

Updated: 2024-08-02T10:56:04.090Z

cve-icon NVD

Status : Modified

Published: 2023-05-03T15:15:12.310

Modified: 2024-11-21T07:47:54.603

Link: CVE-2023-24461

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.