Lucene search
F5CVELIST:CVE-2023-22358HistoryFeb 01, 2023 - 5:54 p.m.
CVE-2023-22358 BIG-IP Edge Client for Windows vulnerability
2023-02-0117:54:31
CWE-427
f5
www.cve.org
6
cve-2023-22358
dll hijacking
windows installer
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
13.2%
In versions beginning with 7.2.2 to before 7.2.3.1, a DLL hijacking vulnerability exists in the BIG-IP Edge Client Windows Installer. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CNA Affected
[
{
"defaultStatus": "unknown",
"platforms": [
"Windows"
],
"product": "APM Clients",
"vendor": "F5",
"versions": [
{
"lessThan": "7.2.3.1",
"status": "affected",
"version": "7.2.2",
"versionType": "semver"
},
{
"lessThan": "*",
"status": "unaffected",
"version": "7.2.4",
"versionType": "semver"
}
]
}
]References
Related
nessus
nessus
cve
cve
CVE-2023-22358
2023-02-01 18:15:11
prion
prion
Design/Logic Flaw
2023-02-01 18:15:00
cnvd
cnvd
F5 BIG-IP Windows Edge Client client DLL hijacking vulnerability
2023-02-01 00:00:00
nvd
nvd
CVE-2023-22358
2023-02-01 18:15:11
f5
f5
K000130496 : Overview of F5 vulnerabilities (February 2023)
2023-02-01 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
13.2%
Related for CVELIST:CVE-2023-22358