What is the severity of F5-K000137416?

The vulnerability F5-K000137416 has not been publicly assigned a CVSS score, but it may lead to service disruption if exploited.

How do I fix F5-K000137416?

To mitigate the effects of F5-K000137416, ensure that your BIG-IP Advanced WAF or ASM is updated to a patched version that addresses this vulnerability.

Which versions are affected by F5-K000137416?

F5-K000137416 affects BIG-IP Advanced WAF and ASM, particularly version 17.1.0 and potentially earlier versions.

What components of F5 BIG-IP are impacted by F5-K000137416?

The BD process termination issue described in F5-K000137416 impacts the Request Body Handling option in advanced web application policies.

Is there a workaround for F5-K000137416?

Currently, specific workarounds for F5-K000137416 are not documented, so users are encouraged to apply available patches as a preventative measure.

Vulnerability/
F5-K000137416

high

7.5

14/2/2024

F5-K000137416

First published: Wed Feb 14 2024(Updated: )

When a BIG-IP Advanced WAF or BIG-IP ASM policy with a Request Body Handling option is attached to a virtual server, undisclosed requests can cause the BD process to terminate. The condition results from setting the Request Body Handling option in the Header-Based Content Profile for an Allowed URL with "Apply value and content signatures and detect threat campaigns."

Affected Software	Affected Version	How to fix
F5 BIG-IP Advanced Web Application Firewall	=17.1.0	17.1.1
F5 BIG-IP Advanced Web Application Firewall

Never miss a vulnerability like this again

Reference Links

https://my.f5.com/manage/s/article/K000137416

Frequently Asked Questions

What is the severity of F5-K000137416?
The vulnerability F5-K000137416 has not been publicly assigned a CVSS score, but it may lead to service disruption if exploited.
How do I fix F5-K000137416?
To mitigate the effects of F5-K000137416, ensure that your BIG-IP Advanced WAF or ASM is updated to a patched version that addresses this vulnerability.
Which versions are affected by F5-K000137416?
F5-K000137416 affects BIG-IP Advanced WAF and ASM, particularly version 17.1.0 and potentially earlier versions.
What components of F5 BIG-IP are impacted by F5-K000137416?
The BD process termination issue described in F5-K000137416 impacts the Request Body Handling option in advanced web application policies.
Is there a workaround for F5-K000137416?
Currently, specific workarounds for F5-K000137416 are not documented, so users are encouraged to apply available patches as a preventative measure.

agent/references
agent/last-modified-date
agent/severity
agent/first-publish-date
agent/event
agent/type
agent/description
agent/softwarecombine
agent/source
agent/tags
collector/f5-advisory
source/F5
alias/CVE-2024-23308
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/f5
canonical/f5 big-ip advanced web application firewall
version/f5 big-ip advanced web application firewall/17.1.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.