CVE-2021-23031
CVE-2021-23031
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 2.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
14 sep 2021Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.1, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and 11.6.x before 11.6.5.3, an authenticated user may perform a privilege escalation on the BIG-IP Advanced WAF and ASM Configuration utility. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Productos afectados
n/a · BIG-IP Advanced WAF and BIG-IP ASMReferencias
https://support.f5.com/csp/article/K41351250