DNS Rebinding Vulnerability in BIG-IP APM by F5 Networks
CVE-2022-23032
5.3MEDIUM
Key Information:
- Vendor
F5
- Vendor
- CVE Published:
- 25 January 2022
What is CVE-2022-23032?
In all versions prior to 7.2.1.4 of the BIG-IP APM system, a configuration issue with proxy settings in the network access resource allows an attacker to exploit a DNS rebinding attack when connecting BIG-IP Edge Client on both Mac and Windows platforms. This could lead to unauthorized access to the internal network, compromising sensitive data and infrastructure security. It is crucial for organizations using affected versions to update their systems to mitigate potential risks.
Affected Version(s)
BIG-IP Edge Client for Mac and Windows All versions before 7.2.1.4