An authenticated attacker may cause iControl SOAP to become unavailable through undisclosed requests. ([CVE-2022-34851]())

Impact

This vulnerability allows a remote authenticated attacker with at least guest role privileges to send undisclosed requests to iControl SOAP, causing it to become unavailable. There is no data plane exposure; this is a control plane issue only.Read More