Vulnerabilities > CVE-2022-27495 - Unspecified vulnerability in F5 Nginx Service Mesh 1.3.0/1.3.1
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE low complexity
f5
Summary
On all versions 1.3.x (fixed in 1.4.0) NGINX Service Mesh control plane endpoints are exposed to the cluster overlay network. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |