Mwete404

1 exploit Active since Oct 2025
CVE-2025-60013 NOMISEC MEDIUM
F5OS-A 1.5.1-1.5.4 - Authenticated OS Command Injection via FIPS Module Initialization
When a highly-privileged, authenticated attacker attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, arbitrary system commands may be executed, and the FIPS hardware security module (HSM) may fail to initialize. A successful exploit can allow the attacker to cross a security boundary. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
1 stars
CVSS 4.6