WRITEUP #1935

CVE-2022-41622 and CVE-2022-41800 (FIXED): F5 BIG-IP and iControl REST Vulnerabilities and Exposures

CSRFRCERPM Spec Injection

by@iagox86(Ron Bowes)

Program

Published

Nov 16, 2022

Added to HackDex

Nov 17, 2022

Read Full Writeuphttps://www.rapid7.com/blog/post/2022/11/16/cve-2022-41622-and-cve-2022-41800-fixed-f5-big-ip-and-icontrol-rest-vulnerabilities-and-exposures/

▸ RELATED WRITEUPS

Vulnerabilities in Homepage Dashboard

RCESSRF

SSD Advisory – XenForo RCE Via CSRF

RCECSRF

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Built with ❤️ by Shubham Rawat