exploitDog

GHSA-fc4r-fxrx-hcf5

Опубликовано: 20 окт. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

In versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and 13.1.x before 13.1.5.1, When the Advanced WAF / ASM module is provisioned, an authenticated remote code execution vulnerability exists in the BIG-IP iControl REST interface.

In versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and 13.1.x before 13.1.5.1, When the Advanced WAF / ASM module is provisioned, an authenticated remote code execution vulnerability exists in the BIG-IP iControl REST interface.

Ссылки

EPSS

Процентиль: 89%

0.04435

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2022-41617

CVSS3: 7.2

nvd

больше 3 лет назад

In versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and 13.1.x before 13.1.5.1, When the Advanced WAF / ASM module is provisioned, an authenticated remote code execution vulnerability exists in the BIG-IP iControl REST interface.

EPSS

Процентиль: 89%

0.04435

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-77