Lucene search
F5CVELIST:CVE-2023-22372HistoryMay 03, 2023 - 2:30 p.m.
CVE-2023-22372 BIG-IP Edge Client for Windows and Mac OS vulnerability
2023-05-0314:30:55
CWE-924
f5
www.cve.org
cve-2023-22372
pre connection stage
improper enforcement
big-ip edge client
windows
mac os
vulnerability
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
19.4%
In the pre connection stage, an improper enforcement of message integrity vulnerability exists in BIG-IP Edge Client for Windows and Mac OS. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CNA Affected
[
{
"defaultStatus": "unknown",
"platforms": [
"Windows",
"MacOS"
],
"product": "BIG-IP Edge Client",
"vendor": "F5",
"versions": [
{
"lessThan": "7.2.4.1",
"status": "affected",
"version": "7.2.2",
"versionType": "semver"
}
]
}
]References
Related
f5
f5
K000132522 : BIG-IP Edge Client for Windows and macOS vulnerability CVE-2023-22372
2023-05-03 00:00:00
K000133251 : Overview of F5 vulnerabilities (May 2023)
2023-05-03 00:00:00
nessus
nessus
prion
prion
Code injection
2023-05-03 15:15:00
cve
cve
CVE-2023-22372
2023-05-03 15:15:11
cnvd
cnvd
F5 BIG-IP Edge Client for Windows and macOS Security Bypass Vulnerability
2023-05-09 00:00:00
nvd
nvd
CVE-2023-22372
2023-05-03 15:15:11
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
19.4%
Related for CVELIST:CVE-2023-22372