NOMISEC-Henry4E36/CVE-2022-1388

NOMISEC WORKING POC

Exploit for CVE-2022-1388 - F5 BIG-IP iControl RCE via REST Authentication Bypass

AI Analysis

This PoC exploits CVE-2022-1388, an authentication bypass vulnerability in F5 BIG-IP iControl REST. It sends a crafted POST request to execute arbitrary commands (e.g., 'id') via the '/mgmt/tm/util/bash' endpoint with a malformed 'X-F5-Auth-Token' header.

Attack Type

auth_bypass

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type remote

Files 3

https://github.com/Henry4E36/CVE-2022-1388

Stars 8

Forks 1

Last Push Aug 22, 2022

Authors

Henry4E36

Vulnerability

CVE-2022-1388

F5 BIG-IP iControl RCE via REST Authentication Bypass

CRITICAL KEV

CVSS 9.8