Lucene search

[email protected]CVE-2017-14705

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2017-14705

2022-10-0316:23:39

CWE-78

[email protected]

web.nvd.nist.gov

denyall

waf

remote command execution

cve-2017-14705

security vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

9.2 High

AI Score

Confidence

High

0.752 High

EPSS

Percentile

98.2%

JSON

DenyAll WAF before 6.4.1 allows unauthenticated remote command execution via TCP port 3001 because shell metacharacters can be inserted into the type parameter to the tailDateFile function in /webservices/stream/tail.php. An iToken authentication parameter is required but can be obtained by exploiting CVE-2017-14706. This affects DenyAll i-Suite LTS 5.5.0 through 5.5.12, i-Suite 5.6, Web Application Firewall 5.7, and Web Application Firewall 6.x before 6.4.1, with On Premises or AWS/Azure cloud deployments.

Affected configurations

NVD

Node

denyalli-suiteMatch5.5.0lts

denyalli-suiteMatch5.5.9lts

denyalli-suiteMatch5.5.10lts

denyalli-suiteMatch5.5.11lts

denyalli-suiteMatch5.5.12lts

denyalli-suiteMatch5.6.0lts

denyallweb_application_firewallMatch5.7.0

denyallweb_application_firewallMatch6.0.0

denyallweb_application_firewallMatch6.1.0

denyallweb_application_firewallMatch6.2.0

denyallweb_application_firewallMatch6.3.0

denyallweb_application_firewallMatch6.4.0

CPENameOperatorVersion
denyall:i-suitedenyall i-suiteeq5.5.0
denyall:i-suitedenyall i-suiteeq5.5.9
denyall:i-suitedenyall i-suiteeq5.5.10
denyall:i-suitedenyall i-suiteeq5.5.11
denyall:i-suitedenyall i-suiteeq5.5.12
denyall:i-suitedenyall i-suiteeq5.6.0
denyall:web_application_firewalldenyall web application firewalleq5.7.0
denyall:web_application_firewalldenyall web application firewalleq6.0.0
denyall:web_application_firewalldenyall web application firewalleq6.1.0
denyall:web_application_firewalldenyall web application firewalleq6.2.0

CPE	Name	Operator	Version
denyall:i-suite	denyall i-suite	eq	5.5.0
denyall:i-suite	denyall i-suite	eq	5.5.9
denyall:i-suite	denyall i-suite	eq	5.5.10
denyall:i-suite	denyall i-suite	eq	5.5.11
denyall:i-suite	denyall i-suite	eq	5.5.12
denyall:i-suite	denyall i-suite	eq	5.6.0
denyall:web_application_firewall	denyall web application firewall	eq	5.7.0
denyall:web_application_firewall	denyall web application firewall	eq	6.0.0
denyall:web_application_firewall	denyall web application firewall	eq	6.1.0
denyall:web_application_firewall	denyall web application firewall	eq	6.2.0

Rows per page:

1-10 of 121

References

github.com/rapid7/metasploit-framework/pull/8980

pentest.blog/advisory-denyall-web-application-firewall-unauthenticated-remote-code-execution/

www.denyall.com/blog/advisories/advisory-unauthenticated-remote-code-execution-denyall-web-application-firewall/

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

9.2 High

AI Score

Confidence

High

0.752 High

EPSS

Percentile

98.2%

JSON

Related for CVE-2017-14705

nvd2 cvelist2 prion2 checkpoint_advisories1 cve1