Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubexploitBB0C3D96-8DCF-5B10-A738-C0BC94E19AFD
HistoryDec 03, 2022 - 2:31 p.m.

Exploit for Authentication Bypass by Spoofing in Apache Apisix

2022-12-0314:31:28
323
apache apisix
authentication bypass
spoofing
remote code execution
security vulnerability
poc
cve-2022-24112
openresty
etcd
api gateway
dynamic routing
plugin hot loading
vps
nc command

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.974

Percentile

99.9%

JSON

POC

收集的POC

CVE-2022-24112

为了做春秋云境:CVE-2022-24112靶场环境,修改了两个…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

Related

nessus 1
cnvd 1
prion 1
nuclei 1
cvelist 1
nvd 1
githubexploit 11
zdt 2
osv 2
checkpoint_advisories 1
packetstorm 2
cisa_kev 1
attackerkb 2
cve 1
exploitdb 1
metasploit 1
rapid7blog 1
thn 1
malwarebytes 1
qualysblog 1
avleonov 1
ics 1
nessus
nessus
Apache APISIX < 2.10.4 / 2.11.x < 2.12.1 RCE
2022-04-26 00:00:00
cnvd
cnvd
Apache Apisix Remote Code Execution Vulnerability
2022-02-15 00:00:00
prion
prion
Default configuration
2022-02-11 13:15:00
nuclei
nuclei
Apache APISIX - Remote Code Execution
2022-02-23 07:55:27
cvelist
cvelist
CVE-2022-24112 apisix/batch-requests plugin allows overwriting the X-REAL-IP header
2022-02-11 12:20:13
nvd
nvd
CVE-2022-24112
2022-02-11 13:15:08
githubexploit
githubexploit
Exploit for Authentication Bypass by Spoofing in Apache Apisix
2022-03-16 09:19:12
Exploit for Authentication Bypass by Spoofing in Apache Apisix
2022-02-25 15:17:28
Exploit for Authentication Bypass by Spoofing in Apache Apisix
2024-06-03 17:33:59
zdt
zdt
Apache APISIX 2.12.1 - Remote Code Execution Exploit
2022-03-16 00:00:00
Apache APISIX Remote Code Execution Exploit
2022-03-07 00:00:00
osv
osv
CVE-2022-24112
2022-02-11 13:15:08
BIT-apisix-2022-24112
2024-03-06 10:51:05
checkpoint_advisories
checkpoint_advisories
Apache APISIX Remote Code Execution (CVE-2022-24112)
2022-04-05 00:00:00
packetstorm
packetstorm
Apache APISIX 2.12.1 Remote Code Execution
2022-03-16 00:00:00
Apache APISIX Remote Code Execution
2022-03-07 00:00:00
cisa_kev
cisa_kev
Apache APISIX Authentication Bypass Vulnerability
2022-08-25 00:00:00
attackerkb
attackerkb
CVE-2022-24112
2022-02-11 00:00:00
CVE-2021-38406
2021-09-09 00:00:00
cve
cve
CVE-2022-24112
2022-02-11 13:15:08
exploitdb
exploitdb
Apache APISIX 2.12.1 - Remote Code Execution (RCE)
2022-03-16 00:00:00
metasploit
metasploit
APISIX Admin API default access token RCE
2022-02-28 17:09:18
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2022-03-11 20:26:58
thn
thn
CISA Adds 10 New Known Actively Exploited Vulnerabilities to its Catalog
2022-08-29 04:23:00
malwarebytes
malwarebytes
Chinese APT's favorite vulnerabilities revealed
2022-10-13 16:15:00
qualysblog
qualysblog
NSA Alert: Topmost CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors
2022-10-07 20:03:01
avleonov
avleonov
Joint Advisory AA22-279A and Vulristics
2022-10-21 20:10:13
ics
ics
Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors
2022-10-06 12:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.974

Percentile

99.9%

JSON
Related for BB0C3D96-8DCF-5B10-A738-C0BC94E19AFD
nessus1cnvd1prion1nuclei1cvelist1nvd1githubexploit11zdt2osv2checkpoint_advisories1packetstorm2cisa_kev1attackerkb2cve1exploitdb1metasploit1rapid7blog1thn1malwarebytes1qualysblog1avleonov1ics1