Vulnerability CVE-2023-45648 in ApacheTomcat
Hello community members!
I am currently looking into the BIG-IP vulnerability, but I could not determine if only CVE-2023-45648 is affected or unaffected by the investigation.
If anyone knows how to investigate or where to escalate, please let me know.
Shun_Ishikawa Typically when you open look at the F5 site for the CVE in question it will tell you if they are or are not vulnerable and which code versions are vulnerable to it. Your best bet to know what your device could be vulnerable to and possible remediations would be to create a QKVIEW, upload that QKVIEW to iHealth, and then see what they say. I'm not saying it couldn't happen but I have never had an instance where iHealth did not show you the most updated information on vulnerabilities for the code version that you're running.