CVE-2019-6642

Severity

90%

Complexity

80%

Confidentiality

165%

In BIG-IP 15.0.0, 14.0.0-14.1.0.5, 13.0.0-13.1.1.5, 12.1.0-12.1.4.2, and 11.5.2-11.6.4, BIG-IQ 6.0.0-6.1.0 and 5.1.0-5.4.0, iWorkflow 2.3.0, and Enterprise Manager 3.1.1, authenticated users with the ability to upload files (via scp, for example) can escalate their privileges to allow root shell access from within the TMOS Shell (tmsh) interface. The tmsh interface allows users to execute a secondary program via tools like sftp or scp.

In BIG-IP 15.0.0, 14.0.0-14.1.0.5, 13.0.0-13.1.1.5, 12.1.0-12.1.4.2, and 11.5.2-11.6.4, BIG-IQ 6.0.0-6.1.0 and 5.1.0-5.4.0, iWorkflow 2.3.0, and Enterprise Manager 3.1.1, authenticated users with the ability to upload files (via scp, for example) can escalate their privileges to allow root shell access from within the TMOS Shell (tmsh) interface. The tmsh interface allows users to execute a secondary program via tools like sftp or scp.

CVSS 3.0 Base Score 8.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

CVSS 2.0 Base Score 9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:S/C:C/I:C/A:C).

Overview

Type

F5

First reported 5 years ago

2019-07-01 21:15:00

Last updated 5 years ago

2019-10-09 20:15:00

Affected Software

F5 Big-IP Access Policy Manager (APM)

F5 Big-IP Access Policy Manager (APM) 15.0.0

15.0.0

F5 Big-IP Advanced Firewall Manager (AFM)

F5 Big-IP Advanced Firewall Manager (AFM) 15.0.0

15.0.0

F5 Big-IP Application Acceleration Manager (AAM)

F5 Big-IP Application Acceleration Manager (AAM) 15.0.0

15.0.0

F5 Big-IP Link Controller

F5 Big-IP Link Controller 15.0.0

15.0.0

F5 Big-IP Policy Enforcement Manager (PEM)

F5 Big-IP Policy Enforcement Manager (PEM) 15.0.0

15.0.0

F5 Big-IP WebAccelerator

F5 Big-IP WebAccelerator 15.0.0

15.0.0

F5 Big-IP Application Security Manager (ASM)

F5 Big-IP Application Security Manager (ASM) 15.0.0

15.0.0

F5 Networks Big-IP Local Traffic Manager (LTM)

F5 Big-IP Local Traffic Manager (LTM) 15.0.0

15.0.0

F5 Big-IP Fraud Protection Service (FPS)

F5 Big-IP Fraud Protection Service (FPS) 15.0.0

15.0.0

F5 Big-IP Global Traffic Manager (GTM)

F5 Big-IP Global Traffic Manager (GTM) 15.0.0

15.0.0

F5 Big-IP Analytics

F5 Big-IP Analytics 15.0.0

15.0.0

F5 Big-IP Edge Gateway

F5 Big-IP Edge Gateway 15.0.0

15.0.0

F5 Big-IP Domain Name System (DNS)

F5 Big-IP Domain Name System (DNS) 15.0.0

15.0.0

F5 Networks Enterprise Manager 3.1.1

3.1.1

F5 iWorkflow 2.3.0

2.3.0

References

https://support.f5.com/csp/article/K40378764

Vendor Advisory

https://support.f5.com/csp/article/K40378764?utm_source=f5support&utm_medium=RSS

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.