CVE-2023-40537

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Oct 10, 2023
Updated: Oct 19, 2023
CWE ID 613

Summary

CVE-2023-40537 is a vulnerability affecting the BIG-IP Configuration utility on multi-blade VIPRION platforms. It allows an authenticated user's session cookie to remain valid after logging out, potentially enabling unauthorized access. This issue could pose a security risk, and it's important to note that software versions no longer supported have not been evaluated for this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share