CVE-2023-46747 Exploitation Activity - Webserver

Rule Info

Name
CVE-2023-46747 Exploitation Activity - Webserver
Author
Nasreddine Bencherchali (Nextron Systems)
Description
Detects exploitation activity of CVE-2023-46747 an unauthenticated remote code execution vulnerability in F5 BIG-IP.
Reference
https://github.com/AliBrTab/CVE-2023-46747-POC/tree/main
Date
2023-11-08 00:00:00
Modified
None
Id
e9928831-ba14-42ea-a4bc-33d352b9929a
Tags
attack.initial_access attack.t1190 detection.emerging_threats cve.2023.46747 DEMO
Type
Community Rule
Link to Public Repo
https://github.com/SigmaHQ/sigma/search?q=e9928831-ba14-42ea-a4bc-33d352b9929a

Rule History

Author
Title
Date
Commit
Thurein Oo
Merge PR #4552 from @ThureinOo - Add Detection of CVE-2023-46747 Remote Code Execution
2023-11-14
f5553c037
THOR Logo  Scan your endpoints, forensic images or collected files with our portable scanner THOR
  Warning: Access to VALHALLA is rate-limited - once you prove unworthy, access gets denied
  Nextron Systems 2022