exploitDog

CVE-2024-23306

Опубликовано: 14 фев. 2024

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

A vulnerability exists in BIG-IP Next CNF and SPK systems that may allow access to undisclosed sensitive files. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

Ссылки

https://my.f5.com/manage/s/article/K000137886
Vendor Advisory
https://my.f5.com/manage/s/article/K000137886
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:f5:big-ip_next_cloud-native_network_functions:*:*:*:*:*:*:*:*

Версия от 1.1.0 (включая) до 1.2.0 (исключая)

EPSS

Процентиль: 37%

0.00156

Низкий

7.1 High

CVSS3

Дефекты

CWE-522

NVD-CWE-noinfo

Связанные уязвимости

GHSA-5qf5-p4mh-hv7h

CVSS3: 4.4

github

почти 2 года назад

A vulnerability exists in BIG-IP Next CNF and SPK systems that may allow access to undisclosed sensitive files. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

EPSS

Процентиль: 37%

0.00156

Низкий

7.1 High

CVSS3

Дефекты

CWE-522

NVD-CWE-noinfo