Technical Forum
Ask questions. Discover Answers.
Showing results for 
Search instead for 
Did you mean: 
Custom Alert Banner

Help needed to understand KB of f5



Yesterday F5 published K56412001: BIG-IP SSL OCSP Authentication profile vulnerability CVE-2023-22323 has been published

In the KB F5, mention the following in terms of vulnerability.

Currently, I am using Am I vulnerable as F5 mentioned Branch 15.x and Versions known to be vulnerable is 15.1.0 - 15.1.8.

9 REPLIES 9 is within the vulnerable range.

You can also upload a qkview to ihealth and get all the known vulnerabilities for your specific version.


I am very new to f5 BIG-IP in terms of using its features.

Can you please guide how to use ihealth for vulnerabilities? Is this free, or do I need to have the subscription?

iHealth is free but requires registration.

Quick video overview of iHealth:

Vulnerabilietes can be found in diagnostic tab.

Thanks for the reply.

Thanks for the information on iHealth. 

You told me that is within the vulnerable range. How may I know,  according to K56412001: BIG-IP SSL OCSP Authentication profile vulnerability CVE-2023-22323 has been published



Because in this case you consider your release to be 15.1.2 which is within the vulnerable range. Quoting from

Versions known to be vulnerable: The range of product versions within each branch that are confirmed by F5 Product Development as vulnerable. Point releases and hotfixes are not listed in this column, unless a vulnerability is specifically introduced in a given point release or hotfix. Vulnerable versions include all point releases or hotfixes for a given software version. For example, if 13.1.0 is listed as vulnerable, then and are also considered vulnerable if neither of those point releases are listed in the Fixes introduced in column. 

Your mentioned URL don't have 15.1.2. Maybe you pasted the wrong URL.

But in the case of the URL, is BIGIP- vulnerable?

If you read the kb you mentioned entirely there's a link to the other kb which just explain how versioning works for security alerts 

15.1.2 is within the range of 15.1.0 - 15.1.8 (15.1.0, 15.1.1, 15.1.2, 15.1.3, etc to 15.1.8), so as @Amine_Kadimi mentioned, you are vulnerable. Thirding @Amine_Kadimi and @RadekR's recommendations to register and start using iHealth for easy checks! 


Thanks for helping me as well 🙂