Lucene search
F5CVELIST:CVE-2023-22358HistoryFeb 01, 2023 - 5:54 p.m.
CVE-2023-22358 BIG-IP Edge Client for Windows vulnerability
2023-02-0117:54:31
CWE-427
f5
www.cve.org
cve-2023-22358
dll hijacking
windows installer
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
In versions beginning with 7.2.2 to before 7.2.3.1, a DLL hijacking vulnerability exists in the BIG-IP Edge Client Windows Installer. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CNA Affected
[
{
"defaultStatus": "unknown",
"platforms": [
"Windows"
],
"product": "APM Clients",
"vendor": "F5",
"versions": [
{
"lessThan": "7.2.3.1",
"status": "affected",
"version": "7.2.2",
"versionType": "semver"
},
{
"lessThan": "*",
"status": "unaffected",
"version": "7.2.4",
"versionType": "semver"
}
]
}
]References
Related
cve
cve
CVE-2023-22358
2023-02-01 18:15:11
nessus
nessus
cnvd
cnvd
F5 BIG-IP Windows Edge Client client DLL hijacking vulnerability
2023-02-01 00:00:00
prion
prion
Design/Logic Flaw
2023-02-01 18:15:00
nvd
nvd
CVE-2023-22358
2023-02-01 18:15:11
f5
f5
K000130496 : Overview of F5 vulnerabilities (February 2023)
2023-02-01 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2023-22358