Lucene search
This script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.F5_BIGIP_SOL20445457.NASLHistoryJul 02, 2019 - 12:00 a.m.
F5 Networks BIG-IP : iControl REST vulnerability (K20445457)
2019-07-0200:00:00
This script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.0%
Undisclosed iControl REST worker vulnerable to command injection for an Administrator user. (CVE-2019-6620)
Impact
BIG-IP and BIG-IQ
This vulnerability may bypass Appliance mode security by allowing the execution of arbitrary bash commands. In non-Appliance mode deployments, the Administrator and Resource Administrator users already own this level of access. F5 considers this vulnerability a security concern primarily for systems deployed in Appliance mode. In addition, a valid attack vector exists for users who are not already granted Advanced Shell ( bash ) access, such as a Resource Administrator, who by default is not explicitly granted bash access.
Enterprise Manager, F5 iWorkflow, and Traffix SDC
There is no impact; F5 products are not affected by this vulnerability.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from F5 Networks BIG-IP Solution K20445457.
#
# The text description of this plugin is (C) F5 Networks.
#
include('compat.inc');
if (description)
{
script_id(126398);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/11/03");
script_cve_id("CVE-2019-6620");
script_name(english:"F5 Networks BIG-IP : iControl REST vulnerability (K20445457)");
script_set_attribute(attribute:"synopsis", value:
"The remote device is missing a vendor-supplied security patch.");
script_set_attribute(attribute:"description", value:
"Undisclosed iControl REST worker vulnerable to command injection for
an Administrator user. (CVE-2019-6620)
Impact
BIG-IP and BIG-IQ
This vulnerability may bypass Appliance mode security by allowing the
execution of arbitrary bash commands. In non-Appliance mode
deployments, the Administrator and Resource Administrator users
already own this level of access. F5 considers this vulnerability a
security concern primarily for systems deployed in Appliance mode. In
addition, a valid attack vector exists for users who are not already
granted Advanced Shell ( bash ) access, such as a Resource
Administrator, who by default is not explicitly granted bash access.
Enterprise Manager, F5 iWorkflow, and Traffix SDC
There is no impact; F5 products are not affected by this
vulnerability.");
script_set_attribute(attribute:"see_also", value:"https://my.f5.com/manage/s/article/K20445457");
script_set_attribute(attribute:"solution", value:
"Upgrade to one of the non-vulnerable versions listed in the F5 Solution K20445457.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-6620");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/07/02");
script_set_attribute(attribute:"patch_publication_date", value:"2019/07/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/07/02");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_access_policy_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_advanced_firewall_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_acceleration_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_security_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_visibility_and_reporting");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_domain_name_system");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_global_traffic_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_link_controller");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_local_traffic_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_policy_enforcement_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_webaccelerator");
script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"F5 Networks Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("f5_bigip_detect.nbin");
script_require_keys("Host/local_checks_enabled", "Host/BIG-IP/hotfix", "Host/BIG-IP/modules", "Host/BIG-IP/version", "Settings/ParanoidReport");
exit(0);
}
include('f5_func.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var version = get_kb_item('Host/BIG-IP/version');
if ( ! version ) audit(AUDIT_OS_NOT, 'F5 Networks BIG-IP');
if ( isnull(get_kb_item('Host/BIG-IP/hotfix')) ) audit(AUDIT_KB_MISSING, 'Host/BIG-IP/hotfix');
if ( ! get_kb_item('Host/BIG-IP/modules') ) audit(AUDIT_KB_MISSING, 'Host/BIG-IP/modules');
if (report_paranoia < 2) audit(AUDIT_PARANOID);
var sol = 'K20445457';
var vmatrix = {
'AFM': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'AM': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'APM': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'ASM': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'AVR': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'DNS': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'GTM': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'LC': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'LTM': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'PEM': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
},
'WAM': {
'affected': [
'14.0.0-14.1.0','13.0.0-13.1.1','12.1.0-12.1.4','11.5.2-11.6.5'
],
'unaffected': [
'15.0.0','14.1.0.6','14.0.1.1','13.1.1.5','12.1.5','11.6.5.1'
],
}
};
if (bigip_is_affected(vmatrix:vmatrix, sol:sol))
{
var extra = NULL;
if (report_verbosity > 0) extra = bigip_report_get();
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : extra
);
}
else
{
var tested = bigip_get_tested_modules();
var audit_extra = 'For BIG-IP module(s) ' + tested + ',';
if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);
else audit(AUDIT_HOST_NOT, 'running any of the affected modules');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| f5 | big-ip_access_policy_manager | cpe:/a:f5:big-ip_access_policy_manager | |
| f5 | big-ip_advanced_firewall_manager | cpe:/a:f5:big-ip_advanced_firewall_manager | |
| f5 | big-ip_application_acceleration_manager | cpe:/a:f5:big-ip_application_acceleration_manager | |
| f5 | big-ip_application_security_manager | cpe:/a:f5:big-ip_application_security_manager | |
| f5 | big-ip_application_visibility_and_reporting | cpe:/a:f5:big-ip_application_visibility_and_reporting | |
| f5 | big-ip_domain_name_system | cpe:/a:f5:big-ip_domain_name_system | |
| f5 | big-ip_global_traffic_manager | cpe:/a:f5:big-ip_global_traffic_manager | |
| f5 | big-ip_link_controller | cpe:/a:f5:big-ip_link_controller | |
| f5 | big-ip_local_traffic_manager | cpe:/a:f5:big-ip_local_traffic_manager | |
| f5 | big-ip_policy_enforcement_manager | cpe:/a:f5:big-ip_policy_enforcement_manager |
Related
cve
cve
CVE-2019-6620
2019-07-02 21:15:11
cvelist
cvelist
CVE-2019-6620
2019-07-02 20:14:49
f5
f5
K20445457 : iControl REST vulnerability CVE-2019-6620
2019-07-01 00:00:00
nvd
nvd
CVE-2019-6620
2019-07-02 21:15:11
prion
prion
Command injection
2019-07-02 21:15:00
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.0%
Related for F5_BIGIP_SOL20445457.NASL