Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
F5OS vulnerability CVE-2022-41835
Vulnerability Description
In F5OS-A version 1.x before 1.1.0 and F5OS-C version 1.x before 1.5.0, excessive file permissions in F5OS allows an authenticated local attacker to execute limited set of commands in a container and impact the F5OS controller.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H
Vulnerability Type
特权管理不恰当
Vulnerability Title
F5 F5OS-A 安全漏洞
Vulnerability Description
F5 F5OS-A是美国F5公司的一种操作系统软件。 F5 F5OS-A 1.1.0之前的1.x版本和F5OS-C 1.5.0之前的1.x版本存在安全漏洞,该漏洞源于其过高的文件权限允许通过身份验证的本地攻击者在容器中执行有限的命令集,并影响F5OS控制器。
CVSS Information
N/A
Vulnerability Type
N/A