First published: Wed Feb 01 2023(Updated: )
In versions beginning with 7.2.2 to before 7.2.3.1, a DLL hijacking vulnerability exists in the BIG-IP Edge Client Windows Installer. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Credit: f5sirt@f5.com
Affected Software | Affected Version | How to fix |
---|---|---|
F5 Big-ip Access Policy Manager | >=7.2.2<7.2.3.1 | |
F5 Big-ip Access Policy Manager | >=13.1.0<=13.1.5 | |
F5 Big-ip Access Policy Manager | >=14.1.0<=14.1.5 | |
F5 Big-ip Access Policy Manager | >=15.1.0<=15.1.8 | |
F5 Big-ip Access Policy Manager | >=16.1.0<=16.1.3 | |
F5 Big-ip Access Policy Manager | >=17.0.0<17.0.0.2 | |
F5 Big-ip Edge |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-22358 is a DLL hijacking vulnerability in the BIG-IP Edge Client Windows Installer.
Versions beginning with 7.2.2 to before 7.2.3.1 of the BIG-IP Edge Client Windows Installer are affected.
CVE-2023-22358 has a severity rating of 7.8 (high).
To fix CVE-2023-22358, update the BIG-IP Edge Client Windows Installer to version 7.2.3.1 or later.
You can find more information about CVE-2023-22358 at the following link: [CVE-2023-22358](https://my.f5.com/manage/s/article/K76964818)