K000137353: BIG-IP Configuration utility unauthenticated remote code execution vulnerability CVE-2023-46747
Here is the link https://my.f5.com/manage/s/article/K000137353
- Git clone my repo https://github.com/maniak-academy/Mitigate-CVE-2023-46747.git
- Update the hosts.ini if you bigip information
- execute the playbook
ansible-playbook -i hosts.ini playbook.yaml
Here is the output.
PLAY [Execute script on F5 BIG-IP] ****************************************************************************************************************
TASK [Copy the script to the BIG-IP] ************************************************************************************************************** changed: [172.16.10.31] changed: [172.16.10.30]
TASK [Execute the script on the BIG-IP] *********************************************************************************************************** changed: [172.16.10.30] changed: [172.16.10.31]
TASK [Save script output messages] **************************************************************************************************************** ok: [172.16.10.30] ok: [172.16.10.31]
TASK [Aggregate script output messages on localhost] ********************************************************************************************** ok: [172.16.10.30 -> localhost] => (item=Applying ID1378329 mitigation...) ok: [172.16.10.30 -> localhost] => (item=Restarting httpd...) ok: [172.16.10.31 -> localhost] => (item=Applying ID1378329 mitigation...) )k: [172.16.10.30 -> localhost] => (item=Stopping httpd: [ OK ] ok: [172.16.10.31 -> localhost] => (item=Restarting httpd...) )k: [172.16.10.30 -> localhost] => (item=Starting httpd: [ OK ] )k: [172.16.10.31 -> localhost] => (item=Stopping httpd: [ OK ] )k: [172.16.10.31 -> localhost] => (item=Starting httpd: [ OK ] ok: [172.16.10.30 -> localhost] => (item=Restarting tomcat...) ok: [172.16.10.30 -> localhost] => (item=Done!) ok: [172.16.10.31 -> localhost] => (item=Restarting tomcat...) ok: [172.16.10.31 -> localhost] => (item=Done!)