Vulnerability CVE-2014-2927


Published: 2014-10-15

Description:
The rsync daemon in F5 BIG-IP 11.6 before 11.6.0, 11.5.1 before HF3, 11.5.0 before HF4, 11.4.1 before HF4, 11.4.0 before HF7, 11.3.0 before HF9, and 11.2.1 before HF11 and Enterprise Manager 3.x before 3.1.1 HF2, when configured in failover mode, does not require authentication, which allows remote attackers to read or write to arbitrary files via a cmi request to the ConfigSync IP address.

Type:

CWE-287

(Improper Authentication)

Vendor: F5
Product: Firepass 
Version:
7.0.0
6.1.0
6.0.3
6.0.2
6.0.1
6.0.0
See more versions on NVD
Product: ARX 
Version:
6.4.0
6.3.0
6.2.0
6.1.1
6.1.0
6.0.0
See more versions on NVD
Product: Big-iq security 
Version:
4.3.0
4.2.0
4.1.0
4.0.0
See more versions on NVD
Product: Big-iq cloud 
Version:
4.3.0
4.2.0
4.1.0
4.0.0
See more versions on NVD
Product: Big-iq device 
Version: 4.3.0; 4.2.0;
Product: Enterprise manager 
Version:
3.1.1
3.1.0
3.0.0
2.3.0
2.2.0
2.1.0
See more versions on NVD
Product: Big-ip policy enforcement manager 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
11.3.0
See more versions on NVD
Product: Big-ip global traffic manager 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
11.3.0
11.2.1
See more versions on NVD
Product: Big-ip application acceleration manager 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
See more versions on NVD
Product: Big-ip analytics 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
11.3.0
11.2.1
11.2.0
See more versions on NVD
Product: Big-ip advanced firewall manager 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
11.3.0
See more versions on NVD
Product: Big-ip local traffic manager 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
11.3.0
11.2.1
See more versions on NVD
Product: Big-ip access policy manager 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
11.3.0
11.2.1
See more versions on NVD
Product: Big-ip link controller 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
11.3.0
11.2.1
See more versions on NVD
Product: Big-ip application security manager 
Version:
11.6.0
11.5.1
11.5.0
11.4.1
11.4.0
11.3.0
11.2.1
See more versions on NVD
Product: Big-ip 
Version: 11.5.1; 11.2.0;
Product: Big-ip protocol security module 
Version:
11.4.1
11.4.0
11.3.0
11.2.1
See more versions on NVD
Product: Big-ip webaccelerator 
Version: 11.3.0; 11.2.1;
Product: Big-ip edge gateway 
Version: 11.3.0; 11.2.1;
Product: Big-ip wan optimization manager 
Version: 11.3.0; 11.2.1;

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
https://support.f5.com/kb/en-us/solutions/public/15000/200/sol15236.html
http://www.security-assessment.com/files/documents/advisory/F5_Unauthenticated_rsync_access_to_Remote_Root_Code_Execution.pdf
http://www.exploit-db.com/exploits/34465

Related CVE
CVE-2019-6656
BIG-IP APM Edge Client before version 7.1.8 (7180.2019.508.705) logs the full apm session ID in the log files. Vulnerable versions of the client are bundled with BIG-IP APM versions 15.0.0-15.0.1, 14,1.0-14.1.0.6, 14.0.0-14.0.0.4, 13.0.0-13.1.1.5, 12...
CVE-2019-6655
On versions 13.0.0-13.1.0.1, 12.1.0-12.1.4.1, 11.6.1-11.6.4, and 11.5.1-11.5.9, BIG-IP platforms where AVR, ASM, APM, PEM, AFM, and/or AAM is provisioned may leak sensitive data.
CVE-2019-6654
On versions 14.0.0-14.1.2, 13.0.0-13.1.3, 12.1.0-12.1.5, and 11.5.1-11.6.5, the BIG-IP system fails to perform Martian Address Filtering (As defined in RFC 1812 section 5.3.7) on the control plane (management interface). This may allow attackers on a...
CVE-2019-6653
There is a Stored Cross Site Scripting vulnerability in the undisclosed page of a BIG-IQ 6.0.0-6.1.0 or 5.2.0-5.4.0 system. The attack can be stored by users granted the Device Manager and Administrator roles.
CVE-2019-6652
In BIG-IQ 6.0.0-6.1.0, services for stats do not require authentication nor do they implement any form of Transport Layer Security (TLS).
CVE-2019-6651
In BIG-IP 15.0.0, 14.1.0-14.1.0.6, 14.0.0-14.0.0.5, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, 11.5.1-11.6.4, BIG-IQ 7.0.0, 6.0.0-6.1.0,5.2.0-5.4.0, iWorkflow 2.3.0, and Enterprise Manager 3.1.1, the Configuration utility login page may not follow best securi...
CVE-2019-6650
F5 BIG-IP ASM 15.0.0, 14.1.0-14.1.0.6, 14.0.0-14.0.0.5, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, 11.6.0-11.6.4, and 11.5.1-11.5.9 may expose sensitive information and allow the system configuration to be modified when using non-default settings.
CVE-2019-6649
F5 BIG-IP 15.0.0, 14.1.0-14.1.0.6, 14.0.0-14.0.0.5, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, 11.6.0-11.6.4, and 11.5.1-11.5.9 and Enterprise Manager 3.1.1 may expose sensitive information and allow the system configuration to be modified when using non-defa...

Copyright 2019, cxsecurity.com

 

Back to Top