CVE-2023-36494

CWE-532Log File Information Exposure4 documents4 sources
Severity
4.4MEDIUM
EPSS
0.1%
top 76.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
F5 F5os - ApplianceF5 F5os-a
Timeline
PublishedAug 2

Description

Audit logs on F5OS-A may contain undisclosed sensitive information. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5f5/f5os_-_appliance1.4.01.5.0
NVDf5/f5os-a1.4.0

🔴Vulnerability Details

2
CVEList
F5OS-A vulnerability2023-08-02
GHSA
GHSA-wj75-7j4g-j268: Audit logs on F5OS-A may contain undisclosed sensitive information2023-08-02

📋Vendor Advisories

1
F5
CVE-2023-36494: Audit logs on F5OS-A may contain undisclosed sensitive information2023-08-02
CVE-2023-36494 (MEDIUM CVSS 4.4) | Audit logs on F5OS-A may contain un | cvebase.io