NOMISEC-doocop/CVE-2022-1388-EXP

NOMISEC WORKING POC

Exploit for CVE-2022-1388 - F5 BIG-IP iControl RCE via REST Authentication Bypass

AI Analysis

This repository contains a working PoC for CVE-2022-1388, an RCE vulnerability in F5 BIG-IP iControl REST API. It includes both a vulnerability checker and an exploit script capable of executing arbitrary commands and reverse shells.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 4

https://github.com/doocop/CVE-2022-1388-EXP

Stars 92

Forks 20

Last Push May 09, 2022

Authors

doocop Caps

Vulnerability

CVE-2022-1388

F5 BIG-IP iControl RCE via REST Authentication Bypass

CRITICAL KEV

CVSS 9.8