CVE-2022-1388 – CVE Helper

POC

CVE Helper 32BITZ

4837 Total CVEs

26 Years

GitHub

// Info

CVE ID CVE-2022-1388

Year 2022

Type Proof of Concept

Files 5 (4 POC + README)

Source 32BitZ-Studio/Total-POC-CVE

View Folder on GitHub Download POC (.zip) Back to list

// POC Scripts

YAML

bigip-icontrol-rest-rce.yaml 716 B

View Source GitHub Raw

YAML

f5-icontrol-rest-api-auth-bypass.yaml 449 B

View Source GitHub Raw

JPEG

pic.jpeg 91.8 KB

View Source GitHub Raw

JPEG

rce.jpeg 113.2 KB

View Source GitHub Raw

README.md

Rendering markdown...

POC / f5-icontrol-rest-api-auth-bypass.yaml YAML

⬇ Raw GitHub ✕ Close

id: f5-icontrol-rest-api-auth-bypass

info:
  name: F5 iControl REST API Auth Bypass
  author: numanturle
  severity: high
  reference:
    - https://twitter.com/1ZRR4H/status/1522150111429726209
  tags: rce

requests:
  - method: GET
    redirects: true
    path:
      - '{{BaseURL}}/mgmt/shared/authn/login'
    matchers:
      - type: word
        words:
          - "resterrorresponse"
          - "Authorization failed"
        condition: and