CVE-2022-1388
CVE-2022-1388
Em resumo
Dispositivos F5 BIG-IP com certas versões de software permitem que atacantes ignorem a autenticação da API iControl REST, obtendo acesso não autorizado a funções críticas de gerenciamento do sistema sem credenciais válidas.
Detalhe técnico
CWE-306 (Verificação de Autenticação Ausente): Requisições não autenticadas para iControl REST em versões vulneráveis do BIG-IP contornam mecanismos de autenticação, permitindo que atacantes remotos acessem diretamente funções administrativas. Versões afetadas incluem 16.1.x (<16.1.2.2), 15.1.x (<15.1.5.1), 14.1.x (<14.1.4.6), 13.1.x (<13.1.5) e todas as versões 12.1.x e 11.6.x. O impacto inclui comprometimento completo do dispositivo e manipulação de configurações.
Resumo gerado e traduzido por IA a partir da descrição oficial.
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all 12.1.x and 11.6.x versions, undisclosed requests may bypass iControl REST authentication. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
F5 · BIG-IPPoCs públicas encontradas — 69
githubgithub.com/horizon3ai/CVE-2022-1388★ 230githubgithub.com/doocop/CVE-2022-1388-EXP★ 93githubgithub.com/alt3kx/CVE-2022-1388_PoC★ 87githubgithub.com/0xf4n9x/CVE-2022-1388★ 83githubgithub.com/ZephrFish/F5-CVE-2022-1388-Exploit★ 59githubgithub.com/sherlocksecurity/CVE-2022-1388-Exploit-POC★ 58githubgithub.com/numanturle/CVE-2022-1388★ 53githubgithub.com/Al1ex/CVE-2022-1388★ 37githubgithub.com/MrCl0wnLab/Nuclei-Template-CVE-2022-1388-BIG-IP-iControl-REST-Exposed★ 28githubgithub.com/jheeree/CVE-2022-1388-checker★ 25githubgithub.com/PsychoSec2/CVE-2022-1388-POC★ 14githubgithub.com/justakazh/CVE-2022-1388★ 13githubgithub.com/Zeyad-Azima/CVE-2022-1388★ 12githubgithub.com/west9b/F5-BIG-IP-POC★ 10githubgithub.com/Henry4E36/CVE-2022-1388★ 8githubgithub.com/qusaialhaddad/F5-BigIP-CVE-2022-1388★ 7githubgithub.com/vaelwolf/CVE-2022-1388★ 7githubgithub.com/blind-intruder/CVE-2022-1388-RCE-checker-and-POC-Exploit★ 7githubgithub.com/gotr00t0day/CVE-2022-1388★ 7githubgithub.com/MrCl0wnLab/Nuclei-Template-Exploit-F5-BIG-IP-iControl-REST-Auth-Bypass-RCE-Command-Parameter★ 6githubgithub.com/0x7eTeam/CVE-2022-1388-PocExp★ 6githubgithub.com/Vulnmachines/F5-Big-IP-CVE-2022-1388★ 6githubgithub.com/Angus-Team/F5-BIG-IP-RCE-CVE-2022-1388★ 5githubgithub.com/Stonzyy/Exploit-F5-CVE-2022-1388★ 5githubgithub.com/AmirHoseinTangsiriNET/CVE-2022-1388-Scanner★ 5githubgithub.com/bandit92/CVE2022-1388_TestAPI★ 4githubgithub.com/revanmalang/CVE-2022-1388★ 3githubgithub.com/nvk0x/CVE-2022-1388-exploit★ 3githubgithub.com/aancw/CVE-2022-1388-rs★ 2githubgithub.com/SecTheBit/CVE-2022-1388★ 2githubgithub.com/savior-only/CVE-2022-1388★ 2githubgithub.com/saucer-man/CVE-2022-1388★ 2githubgithub.com/superzerosec/CVE-2022-1388★ 2githubgithub.com/EvilLizard666/CVE-2022-1388★ 2githubgithub.com/devengpk/CVE-2022-1388★ 2githubgithub.com/chesterblue/CVE-2022-1388★ 1githubgithub.com/LinJacck/CVE-2022-1388-EXP★ 1githubgithub.com/iveresk/cve-2022-1388-1veresk★ 1githubgithub.com/shamo0/CVE-2022-1388★ 1githubgithub.com/vesperp/CVE-2022-1388-F5-BIG-IP★ 1githubgithub.com/thatonesecguy/CVE-2022-1388-Exploit★ 1githubgithub.com/0xAgun/CVE-2022-1388★ 1githubgithub.com/yukar1z0e/CVE-2022-1388★ 1githubgithub.com/iveresk/cve-2022-1388-iveresk-command-shell★ 1githubgithub.com/Chocapikk/CVE-2022-1388★ 1githubgithub.com/Luchoane/CVE-2022-1388_refresh★ 1githubgithub.com/ThinkingOffensively/CVE-2022-1388★ 1githubgithub.com/amitlttwo/CVE-2022-1388★ 1githubgithub.com/j-baines/tippa-my-tongue★ 1githubgithub.com/nico989/CVE-2022-1388★ 1githubgithub.com/pauloink/CVE-2022-1388★ 0githubgithub.com/Osyanina/westone-CVE-2022-1388-scanner★ 0githubgithub.com/sashka3076/F5-BIG-IP-exploit★ 0githubgithub.com/li8u99/CVE-2022-1388★ 0githubgithub.com/jbharucha05/CVE-2022-1388★ 0githubgithub.com/omnigodz/CVE-2022-1388★ 0githubgithub.com/impost0r/CVE-2022-1388★ 0githubgithub.com/M4fiaB0y/CVE-2022-1388★ 0githubgithub.com/mr-vill4in/CVE-2022-1388★ 0githubgithub.com/On-Cyber-War/CVE-2022-1388★ 0githubgithub.com/r0otk3r/CVE-2022-1388★ 0githubgithub.com/SudeepaShiranthaka/F5-BIG-IP-Remote-Code-Execution-Vulnerability-CVE-2022-1388-A-Case-Study★ 0githubgithub.com/Hudi233/CVE-2022-1388★ 0githubgithub.com/battleofthebots/refresh★ 0githubgithub.com/Wrin9/CVE-2022-1388★ 0exploitdbwww.exploit-db.com/exploits/50932não verificadocve_referencepacketstormsecurity.com/files/167007/F5-BIG-IP-Remote-Code-Execution.htmlnão verificadocve_referencepacketstormsecurity.com/files/167118/F5-BIG-IP-16.0.x-Remote-Code-Execution.htmlnão verificadocve_referencepacketstormsecurity.com/files/167150/F5-BIG-IP-iControl-Remote-Code-Execution.htmlnão verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://packetstormsecurity.com/files/167007/F5-BIG-IP-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/167118/F5-BIG-IP-16.0.x-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/167150/F5-BIG-IP-iControl-Remote-Code-Execution.htmlhttps://support.f5.com/csp/article/K23605346https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-1388https://www.secpod.com/blog/critical-f5-big-ip-remote-code-execution-vulnerability-patch-now/