Lucene search
K

4 matches found

CNNVD
CNNVD
added 2026/05/13 12:0 a.m.9 views

F5 BIG-IP 操作系统命令注入漏洞

F5 BIG-IP is an application delivery platform developed by F5 Technologies in the United States. It integrates functions such as network traffic management, application security management, and load balancing. F5 BIG-IP has a vulnerability related to operating system command injection. This...

8.7CVSS5.6AI score0.00692EPSS
Exploits0References1
CVE
CVE
added 2025/10/15 1:55 p.m.17 views

CVE-2025-61958

CVE-2025-61958 is an iHealth TMOS Shell (tmsh) privilege-bypass vulnerability in BIG-IP. An authenticated user with at least Resource Administrator privileges can bypass tmsh restrictions and gain Advanced Shell (bash) access, potentially crossing Appliance mode boundaries. F5 provides fixes in m...

8.7CVSS6.3AI score0.00358EPSS
Exploits0References1Affected Software21
ATTACKERKB
ATTACKERKB
added 2025/02/05 6:15 p.m.2 views

CVE-2025-23239

When running in Appliance mode, and logged into a highly-privileged role, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint. A successful exploit can allow the attacker to cross a security boundary. Note: Software versions which have reached E...

9.9CVSS5.8AI score0.00753EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/02/05 6:15 p.m.3 views

CVE-2025-23239

When running in Appliance mode, and logged into a highly-privileged role, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint. A successful exploit can allow the attacker to cross a security boundary. Note: Software versions which have reached E...

8.7CVSS5.6AI score0.00753EPSS
Exploits0References1
Rows per page
Query Builder