CVE-2023-43746 (big-ip_access_policy_manager, big-ip_advanced_firewall_manager, big-ip_application_security_manager, big-ip_domain_name_system, big-ip_local_traffic_manager)

When running in Appliance mode, an authenticated user assigned the Administrator role may be able to bypass Appliance mode restrictions, utilizing BIG-IP external monitor on a BIG-IP system.  A successful exploit can allow the attacker to cross a security boundary.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

attacker big big-ip bypass cve end exploit external may mode monitor restrictions role running security software support system technical technical support