CVE-2021-23031
CVE-2021-23031
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 2.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
14 set 2021Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.1, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and 11.6.x before 11.6.5.3, an authenticated user may perform a privilege escalation on the BIG-IP Advanced WAF and ASM Configuration utility. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Produtos afetados
n/a · BIG-IP Advanced WAF and BIG-IP ASMReferências
https://support.f5.com/csp/article/K41351250