F5 Networks BIG-IQ Configuration Utility Privilege Escalation

high Nessus Plugin ID 73950

Synopsis

The remote host is affected by a privilege escalation vulnerability.

Description

According to its version number, the remote F5 Networks BIG-IQ device is affected by a privilege escalation vulnerability that allows remote, authenticated users to change the password of other users (such as the default 'root' user) via a specially crafted request to the web configuration utility. This is due to a flaw in the '/mgmt/shared/authz/users/' script.

Solution

Upgrade to BIG-IQ version 4.2.0 or later.

See Also

http://www.nessus.org/u?c8d05021

http://www.nessus.org/u?b3ef1cac

Plugin Details

Severity: High

ID: 73950

File Name: f5_bigiq_cu_privilege_escalation.nasl

Version: 1.6

Type: remote

Family: CGI abuses

Published: 5/9/2014

Updated: 6/3/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9

Temporal Score: 7

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/h:f5:big-iq

Required KB Items: Host/BIG-IQ/version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2/13/2014

Vulnerability Publication Date: 5/1/2014

Reference Information

CVE: CVE-2014-3220

BID: 67191

IAVB: 2014-B-0051-S