CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: May 31, 2022

CVE-2022-1388

High

CVSS 9.8EPSS 94.5%CISA KEVPoC AvailableRansomware

F5/BIG-IP

Description

F5 BIG-IP contains a missing authentication in critical function vulnerability which can allow for remote code execution, creation or deletion of files, or disabling services.

CVSS Score

9.8/ 10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS — Exploit Probability

94.5%

Higher than 100.0% of all CVEs

Weakness Classification (CWE)

CWE-306CWE-306MITRE

Known Exploits

POC

http://packetstormsecurity.com/files/167007/F5-BIG-IP-Remote-Code-Execution.htmlExploit http://packetstormsecurity.com/files/167118/F5-BIG-IP-16.0.x-Remote-Code-Execution.htmlExploit http://packetstormsecurity.com/files/167150/F5-BIG-IP-iControl-Remote-Code-Execution.htmlExploit https://www.secpod.com/blog/critical-f5-big-ip-remote-code-execution-vulnerability-patch-now/Exploit http://packetstormsecurity.com/files/167007/F5-BIG-IP-Remote-Code-Execution.htmlExploit http://packetstormsecurity.com/files/167118/F5-BIG-IP-16.0.x-Remote-Code-Execution.htmlExploit http://packetstormsecurity.com/files/167150/F5-BIG-IP-iControl-Remote-Code-Execution.htmlExploit https://www.secpod.com/blog/critical-f5-big-ip-remote-code-execution-vulnerability-patch-now/Exploit

Required Action

https://nvd.nist.gov/vuln/detail/CVE-2022-1388

Risk Assessment

CRITICAL

In CISA KEV

Known exploit

Critical CVSS

High EPSS

Ransomware

Details

Severity: High
CVSS: 9.8
EPSS: 94.5%
CWE: CWE-306
Exploit: POC
CISA KEV: Yes
Ransomware: Known
Articles: 0

Timeline

Published

May 10, 2022

Added to KEV

May 10, 2022

Remediation Due

May 31, 2022

Affected Product

BIG-IP

View all F5 CVEs

External Links

NVD (NIST)CVE Details MITRE CVE