CVE-2022-31125

Authentication Bypass in Roxy-wi

CVSS 10 CRITICALEPSS 15.9%CWE-287

Roxy-wi is an open source web interface for managing Haproxy, Nginx, Apache and Keepalived servers. A vulnerability in Roxy-wi allows a remote, unauthenticated attacker to bypass authentication and access admin functionality by sending a specially crafted HTTP request. This affects Roxywi versions before 6.1.1.0. Users are advised to upgrade. There are no known workarounds for this issue.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L

Affected products

hap-wi · roxy-wi

public PoCs found — 2

cve_referencepacketstormsecurity.com/files/171648/Roxy-WI-6.1.0.0-Improper-Authentication-Control.htmlunverified exploitdbwww.exploit-db.com/exploits/51226unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/171648/Roxy-WI-6.1.0.0-Improper-Authentication-Control.html https://github.com/hap-wi/roxy-wi/security/advisories/GHSA-hr76-3hxp-5mm3