Vulnerabilities > CVE-2022-41835 - Unspecified vulnerability in F5 F5Os-A and F5Os-C

CVSS 8.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

NVD

Published: 2022-10-19

Updated: 2024-11-21

Summary

In F5OS-A version 1.x before 1.1.0 and F5OS-C version 1.x before 1.5.0, excessive file permissions in F5OS allows an authenticated local attacker to execute limited set of commands in a container and impact the F5OS controller.

Vulnerable Configurations

Part	Description	Count
OS	F5 F5 F5Os A * F5 F5Os C *	2

References

https://support.f5.com/csp/article/K33484483
https://support.f5.com/csp/article/K33484483