CVE-2023-22657
published 2023-02-01CVE-2023-22657: On F5OS-A beginning in version 1.2.0 to before 1.3.0 and F5OS-C beginning in version 1.3.0 to before 1.5.0, processing F5OS tenant file names may allow for…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
On F5OS-A beginning in version 1.2.0 to before 1.3.0 and F5OS-C beginning in version 1.3.0 to before 1.5.0, processing F5OS tenant file names may allow for command injection. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f5 | f5os | — | — |
| f5 | f5os-a | — | — |
| f5 | f5os-a | >= 1.2.0 < 1.3.0 | 1.3.0 |
| f5 | f5os-c | — | — |
| f5 | f5os-c | >= 1.3.0 < 1.5.0 | 1.5.0 |