Imperva is tracking the recent critical security vulnerability impacting F5’s BIG-IP solution. The vulnerability, CVE-2023-46747, could allow an attacker to bypass authentication and potentially compromise the system via request smuggling.
Imperva Threat Research has been actively monitoring this situation, and we are happy to inform that Imperva Cloud WAF and WAF Gateway customers with Threat Radar enabled are protected out of the box against this threat. Imperva WAF Gateway customers will need to enable the signature via the Emergency Feed.
Even with protection, we urge our customers to remain vigilant and ensure their systems are updated with the latest security patches. We will update this blog with more information as it becomes available.
Try Imperva for Free
Protect your business for 30 days on Imperva.