Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In versions prior to 3.3.0, the NGINX Controller is configured to communicate with its Postgres database server over unencrypted channels, making the communicated data vulnerable to interception via man-in-the-middle (MiTM) attacks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
F5 NGINX Controller 信息泄露漏洞
Vulnerability Description
F5 NGINX Controller是美国F5公司的一款用于NGINX的集中式监视和管理平台。该平台支持使用可视化界面管理多个NGINX实例。 F5 NGINX Controller 3.3.0之前版本中存在安全漏洞,该漏洞源于NGINX Controlle通过未加密的通道与Postgres数据库进行通信。攻击者可通过实施中间人攻击利用该漏洞拦截通信的数据。
CVSS Information
N/A
Vulnerability Type
N/A