CVE-2023-42768: 
F5 BIG-IP Advanced Firewall Manager vulnerability analysis and mitigation

CVE-2023-42768 is a privilege escalation vulnerability affecting F5's BIG-IP systems. The vulnerability was discovered and disclosed on October 10, 2023. It affects multiple versions of BIG-IP systems including versions 13.1.0-13.1.5, 14.1.0-14.1.5, 15.1.0-15.1.9, and 16.1.0-16.1.4 across various BIG-IP modules (NVD).

The vulnerability occurs when a non-admin user who has been assigned an administrator role via an iControl REST PUT request maintains administrative access even after their role is reverted back to a non-admin role through the Configuration utility, tmsh, or iControl REST. This results in unauthorized access to iControl REST admin resources. The vulnerability has been assigned a CVSS v3.1 base score of 7.2 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability allows non-admin users to retain administrative access to iControl REST admin resources even after their privileges have been revoked, potentially leading to unauthorized system access and control. This could result in significant security implications as it bypasses intended access control mechanisms (NVD).

F5 has released security patches for affected versions. Users are advised to upgrade to the patched versions of the software. The vulnerability affects multiple BIG-IP modules and versions, requiring system administrators to verify their deployed versions and apply appropriate updates (F5 Advisory).