CVE-2024-23308: 
F5 BIG-IP Virtual Edition (tier - best) vulnerability analysis and mitigation

A denial of service vulnerability (CVE-2024-23308) affects BIG-IP Advanced WAF and BIG-IP ASM systems when a Request Body Handling option is attached to a virtual server. The vulnerability occurs when the Request Body Handling option is set in the Header-Based Content Profile for an Allowed URL with 'Apply value and content signatures and detect threat campaigns.' This vulnerability has been assigned a CVSS v3.1 base score of 7.5 (HIGH) (NVD).

The vulnerability is classified as a NULL Pointer Dereference (CWE-476) that can cause the BD process to terminate when specific undisclosed requests are processed. The vulnerability affects multiple versions of BIG-IP Advanced WAF/ASM, including versions 16.1.0-16.1.3 and 17.1.0. The attack vector is network-accessible (AV:N) with low attack complexity (AC:L), requiring no privileges (PR:N) or user interaction (UI:N) (NVD).

When successfully exploited, this vulnerability can lead to a denial of service condition by causing the BD process to terminate, potentially disrupting the normal operation of the BIG-IP Advanced WAF or ASM services. The CVSS metrics indicate high impact on availability (A:H) with no impact on confidentiality (C:N) or integrity (I:N) (NVD).

F5 has released security updates to address this vulnerability. Users are advised to upgrade to the following versions: BIG-IP Advanced WAF/ASM version 16.1.4 or 17.1.1. Systems that have reached End of Technical Support (EoTS) are not evaluated (ASEC).