Exposure of Sensitive Information vulnerability exist in an undisclosed BIG-IP TMOS shell (tmsh) command which may allow an authenticated attacker with resource administrator role privileges to view sensitive information.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Attack Vector Local
Attack Complexity Low
Privileges Required High
Scope Unchanged
Confidentiality Impact High
Integrity Impact None
Availability Impact None
User Interaction None
No CVSS v3.0
No CVSS v2
Vendors | Products |
---|---|
F5 |
|
Configuration 1 [-]
|
References
Link | Resource |
---|---|
https://my.f5.com/manage/s/article/K20307245 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: f5
Published: 2023-10-10T12:39:11.420Z
Updated: 2023-10-10T12:39:11.420Z
Reserved: 2023-10-05T19:17:34.514Z
Link: CVE-2023-45219
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-10T13:15:22.297
Modified: 2023-10-18T01:32:45.897
Link: CVE-2023-45219
JSON object: View
Redhat Information
No data.