Lucene search
F5F5:K34893234HistoryAug 03, 2022 - 12:00 a.m.
K34893234 : BIG-IP APM Appliance mode vulnerability CVE-2022-31473
2022-08-0300:00:00
my.f5.com
12
Security Advisory Description
When running in Appliance mode, an authenticated attacker may be able to bypass Appliance mode restrictions due to a directory traversal vulnerability in an undisclosed page within iApps. A successful exploit can allow the attacker to cross a security boundary. (CVE-2022-31473)
Impact
In Appliance mode, an authenticated attacker with valid credentials may be able to bypass Appliance mode restrictions. This is a control plane issue; there is no data plane exposure. Appliance mode is enforced by a specific license or may be enabled or disabled for individual Virtual Clustered Multiprocessing (vCMP) guest instances. For information about Appliance mode, refer to K12815: Overview of Appliance mode.
Related
cve
cve
CVE-2022-31473
2022-08-04 18:15:09
nessus
nessus
F5 Networks BIG-IP : BIG-IP APM Appliance mode vulnerability (K34893234)
2023-11-02 00:00:00
cnvd
cnvd
F5 BIG-IP APM device mode path traversal vulnerability
2022-08-03 00:00:00
nvd
nvd
CVE-2022-31473
2022-08-04 18:15:09
cvelist
cvelist
CVE-2022-31473 BIG-IP APM Appliance mode vulnerability CVE-2022-31473
2022-08-03 00:00:00
prion
prion
Directory traversal
2022-08-04 18:15:00
f5
f5
K14649763 : Overview of F5 vulnerabilities (August 2022)
2022-08-03 00:00:00