cve/CVE-2022-41800.md at c052d0d6949679697108fa931a00cd4220694869

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-31 10:40:54 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

In all versions of BIG-IP, when running in Appliance mode, an authenticated user assigned the Administrator role may be able to bypass Appliance mode restrictions, utilizing an undisclosed iControl REST endpoint. A successful exploit can allow the attacker to cross a security boundary. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/f0cus77/awesome-iot-security-resource
https://github.com/f1tao/awesome-iot-security-resource
https://github.com/fardeen-ahmed/Bug-bounty-Writeups
https://github.com/j-baines/tippa-my-tongue

1.1 KiB Raw Blame History

CVE-2022-41800

Description

POC

Reference

Github

1.1 KiB

Raw Blame History