admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 10:16:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

add : CVE-2022-1388

Browse Source
This commit is contained in:
gaopeng2 2022-05-09 18:48:05 +08:00
parent 73d6fc519c
commit 844c1d5806
2 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
F5/CVE-2022-1388/CVE-2022-1388.gif Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 1.2 MiB

10
F5/CVE-2022-1388/README.md Normal file
View File

@ -0,0 +1,10 @@
# BIG-IP iControl REST vulnerability (CVE-2022-1388)
BIG-IP is an application delivery service of F5 company, which is oriented to the world's advanced technology with application as the center. With the help of BIG-IP application delivery controller, keep the application running normally. BIG-IP local traffic manager (LTM) and BIG-IP DNS can handle application traffic and protect infrastructure. This vulnerability may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands, create or delete files, or disable services. There is no data plane exposure; this is a control plane issue only.
FOFA **query rule**: [app="F5-BIGIP"](https://fofapro.com/result?qbase64=YXBwPSJGNS1CSUdJUCI%3D)
# Demo
![CVE-2022-1388](CVE-2022-1388.gif)