Lucene search
HistoryAug 02, 2023 - 4:15 p.m.
CVE-2023-36494
cve-2023-36494
f5os-a
audit logs
sensitive information
nvd
4.4 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Audit logs on F5OS-A may contain undisclosed sensitive information. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected configurations
Node
f5f5os-aMatch1.4.0
CNA Affected
[
{
"defaultStatus": "unknown",
"product": "F5OS - Appliance",
"vendor": "F5",
"versions": [
{
"lessThan": "1.5.0",
"status": "affected",
"version": "1.4.0",
"versionType": "semver"
}
]
}
]References
Related
f5
f5
K000134922 : F5OS-A vulnerability CVE-2023-36494
2023-08-02 00:00:00
K000135479 : Overview of F5 vulnerabilities (August 2023)
2023-08-02 00:00:00
nvd
nvd
CVE-2023-36494
2023-08-02 16:15:10
prion
prion
Design/Logic Flaw
2023-08-02 16:15:00
cvelist
cvelist
CVE-2023-36494 F5OS-A vulnerability
2023-08-02 15:54:26
4.4 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2023-36494