module
F5 BIG-IP iControl Authenticated RCE via RPM Creator
| Disclosed |
|---|
| Nov 16, 2022 |
Disclosed
Nov 16, 2022
Description
This module exploits a newline injection into an RPM .rpmspec file
that permits authenticated users to remotely execute commands.
Successful exploitation results in remote code execution
as the root user.
that permits authenticated users to remotely execute commands.
Successful exploitation results in remote code execution
as the root user.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.