CVE-2023-46747 PoC — F5 BIG-IP Configuration utility 安全漏洞

Source

https://github.com/Xanexs/CVE-2023-46747-Mass-RCE

Associated Vulnerability

Title:F5 BIG-IP Configuration utility 安全漏洞 (CVE-2023-46747)
Description:F5 BIG-IP是美国F5公司的一款集成了网络流量管理、应用程序安全管理、负载均衡等功能的应用交付平台。 F5 BIG-IP Configuration utility存在安全漏洞，该漏洞源于存在远程代码执行（RCE）漏洞。攻击者可利用该漏洞通过management port或self IP addresses执行任意系统命令。

Description

CVE-2023-46747-Mass-RCE

Readme

# CVE-2023-46747-Mass-RCE
CVE-2023-46747 Exploitation tool written in Python 3 compatible with lists of URL/IPs. This download includes a list of over 35,000 (latest) potentially vulnerable hosts according to shodan.io and personal scans. This tool is NOT free to prevent abuse. As of now patches are being applied but the majority of systems aren't patched.

We put up 4 limited copies for sale, available at: https://goo.su/oe5VW

# Requirements
>sudo apt-get install python3 python3-pip

>pip3 install requests
![378870487-06a662ed-22a4-40b0-afe8-1c9e78c31ec2](https://github.com/user-attachments/assets/1437bb6c-4068-46a7-9530-440e6eda3592)
![378870509-68d6a994-4329-4bb1-a608-46a3cbbc4895](https://github.com/user-attachments/assets/e7e867db-394f-4073-af29-906cec73424c)
# Statistics
CVE-2023-46747 The vulnerability received a severity rating of 9.8 out of 10 on the scale. In this kit, we have included our scan results alongside data from SHODAN.IO, which comprises a list of over 35,000 hosts that could potentially be at risk.

File Snapshot


 [4.0K]  /data/pocs/6f0cce2f6aae1a87c08138c2f0d16b7e24bd9ed5
└── [1.0K]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!