F5 Nginx Agent vulnerabilities
2 known vulnerabilities affecting f5/nginx_agent.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2024-7634MEDIUMCVSS 6.9≥ 2.17.0, < 2.37.02024-08-22
CVE-2024-7634 [MEDIUM] CWE-22 CVE-2024-7634: NGINX Agent's "config_dirs" restriction feature allows a highly privileged attacker to gain the abil
NGINX Agent's "config_dirs" restriction feature allows a highly privileged attacker to gain the ability to write/overwrite files outside of the designated secure directory.
cvelistv5nvd
CVE-2023-1550MEDIUMCVSS 5.5≥ 2.0.0, < 2.23.3≥ 2.0, < 2.23.32023-03-29
CVE-2023-1550 [MEDIUM] CWE-532 CVE-2023-1550: Insertion of Sensitive Information into log file vulnerability in NGINX Agent. NGINX Agent version 2
Insertion of Sensitive Information into log file vulnerability in NGINX Agent. NGINX Agent version 2.0 before 2.23.3 inserts sensitive information into a log file. An authenticated attacker with local access to read agent log files may gain access to private keys. This issue is only exposed when the non-default trace level logging is enabled. Note: NG
cvelistv5nvd