2 matches found
CVE-2023-22657
CVE-2023-22657 affects F5OS-A (versions 1.2.0 up to, but not including, 1.3.0) and F5OS-C (versions 1.3.0 up to, but not including, 1.5.0). The vulnerability arises when processing F5OS tenant file names, enabling command injection. The F5 security advisory K06345931 confirms fixes: F5OS-A fixed ...
K06345931: F5OS vulnerability CVE-2023-22657
Security Advisory Description Processing F5OS tenant file names may allow for command injection. CVE-2023-22657 Impact An attacker may trick an administrator to upload a file with a specially crafted file name that injects commands. Security Advisory Status F5 Product Development has assigned ID...