DLL Hijacking in F5 BIG-IP Edge Client (7.1.5-7.2.3.1) on Windows
CVE-2023-22283 Published on February 1, 2023
BIG-IP Edge Client for Windows vulnerability
On versions beginning in 7.1.5 to before 7.2.3.1, a DLL hijacking vulnerability exists in the BIG-IP Edge Client for Windows. User interaction and administrative privileges are required to exploit this vulnerability because the victim user needs to run the executable on the system and the attacker requires administrative privileges for modifying the files in the trusted search path. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Vulnerability Analysis
CVE-2023-22283 can be exploited with local system access, requires user interaction and user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.
Weakness Type
What is a DLL preloading Vulnerability?
The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
CVE-2023-22283 has been classified to as a DLL preloading vulnerability or weakness.
Products Associated with CVE-2023-22283
stack.watch emails you whenever new vulnerabilities are published in F5 Networks Big Ip Access Policy Manager or F5 Networks Big Ip Edge. Just hit a watch button to start following.
Affected Versions
F5 APM Clients:- Version 7.1.5 and below 7.2.3.1 is affected.
- Version 7.2.4 and below * is unaffected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.