Security Advisory Description
An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters. (CVE-2023-24329)
Impact
F5 products do not ship with Python scripts that utilize the affected Python module. In order to become vulnerable, customers must create custom monitors or scripts that utilize the Python urllib.parse module.