CVE-2020-5902

CVE

Critical KEVConfirmedExploit available

In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management User Int…

CVSS

9.8

Critical

EPSS

1.00

p100

Published

2020-01-01

Updated

2021-11-03

Description

In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management User Interface (TMUI), also referred to as the Configuration utility, has a Remote Code Execution (RCE) vulnerability in undisclosed pages.

Tags · CWE

KEVPre-auth

CWE-22

CAPEC-64

CAPEC-76

CAPEC-78

CAPEC-79

CAPEC-126

Affected products

Big-ip_access_policy_manager 11.6.1–11.6.5.2Big-ip_access_policy_manager 12.1.0–12.1.5.2Big-ip_access_policy_manager 13.1.0–13.1.3.4Big-ip_access_policy_manager 14.1.0–14.1.2.6Big-ip_access_policy_manager 15.0.0–15.0.1.4Big-ip_access_policy_manager 15.1.0–15.1.0.4Big-ip_advanced_firewall_manager 11.6.1–11.6.5.2Big-ip_advanced_firewall_manager 12.1.0–12.1.5.2Big-ip_advanced_firewall_manager 13.1.0–13.1.3.4Big-ip_advanced_firewall_manager 14.1.0–14.1.2.6Big-ip_advanced_firewall_manager 15.0.0–15.0.1.4Big-ip_advanced_firewall_manager 15.1.0–15.1.0.4Big-ip_advanced_web_application_firewall 11.6.1–11.6.5.2Big-ip_advanced_web_application_firewall 12.1.0–12.1.5.2Big-ip_advanced_web_application_firewall 13.1.0–13.1.3.4Big-ip_advanced_web_application_firewall 14.1.0–14.1.2.6Big-ip_advanced_web_application_firewall 15.0.0–15.0.1.4Big-ip_advanced_web_application_firewall 15.1.0–15.1.0.4Big-ip_analytics 11.6.1–11.6.5.2Big-ip_analytics 12.1.0–12.1.5.2Big-ip_analytics 13.1.0–13.1.3.4Big-ip_analytics 14.1.0–14.1.2.6Big-ip_analytics 15.0.0–15.0.1.4Big-ip_analytics 15.1.0–15.1.0.4Big-ip_application_acceleration_manager 11.6.1–11.6.5.2Big-ip_application_acceleration_manager 12.1.0–12.1.5.2Big-ip_application_acceleration_manager 13.1.0–13.1.3.4Big-ip_application_acceleration_manager 14.1.0–14.1.2.6Big-ip_application_acceleration_manager 15.0.0–15.0.1.4Big-ip_application_acceleration_manager 15.1.0–15.1.0.4Big-ip_application_security_manager 11.6.1–11.6.5.2Big-ip_application_security_manager 12.1.0–12.1.5.2Big-ip_application_security_manager 13.1.0–13.1.3.4Big-ip_application_security_manager 14.1.0–14.1.2.6Big-ip_application_security_manager 15.0.0–15.0.1.4Big-ip_application_security_manager 15.1.0–15.1.0.4Big-ip_ddos_hybrid_defender 11.6.1–11.6.5.2Big-ip_ddos_hybrid_defender 12.1.0–12.1.5.2Big-ip_ddos_hybrid_defender 13.1.0–13.1.3.4Big-ip_ddos_hybrid_defender 14.1.0–14.1.2.6Big-ip_ddos_hybrid_defender 15.0.0–15.0.1.4Big-ip_ddos_hybrid_defender 15.1.0–15.1.0.4Big-ip_domain_name_system 11.6.1–11.6.5.2Big-ip_domain_name_system 12.1.0–12.1.5.2Big-ip_domain_name_system 13.1.0–13.1.3.4Big-ip_domain_name_system 14.1.0–14.1.2.6Big-ip_domain_name_system 15.0.0–15.0.1.4Big-ip_domain_name_system 15.1.0–15.1.0.4Big-ip_fraud_protection_service 11.6.1–11.6.5.2Big-ip_fraud_protection_service 12.1.0–12.1.5.2Big-ip_fraud_protection_service 13.1.0–13.1.3.4Big-ip_fraud_protection_service 14.1.0–14.1.2.6Big-ip_fraud_protection_service 15.0.0–15.0.1.4Big-ip_fraud_protection_service 15.1.0–15.1.0.4Big-ip_global_traffic_manager 11.6.1–11.6.5.2Big-ip_global_traffic_manager 12.1.0–12.1.5.2Big-ip_global_traffic_manager 13.1.0–13.1.3.4Big-ip_global_traffic_manager 14.1.0–14.1.2.6Big-ip_global_traffic_manager 15.0.0–15.0.1.4Big-ip_global_traffic_manager 15.1.0–15.1.0.4Big-ip_link_controller 11.6.1–11.6.5.2Big-ip_link_controller 12.1.0–12.1.5.2Big-ip_link_controller 13.1.0–13.1.3.4Big-ip_link_controller 14.1.0–14.1.2.6Big-ip_link_controller 15.0.0–15.0.1.4Big-ip_link_controller 15.1.0–15.1.0.4Big-ip_local_traffic_manager 11.6.1–11.6.5.2Big-ip_local_traffic_manager 12.1.0–12.1.5.2Big-ip_local_traffic_manager 13.1.0–13.1.3.4Big-ip_local_traffic_manager 14.1.0–14.1.2.6Big-ip_local_traffic_manager 15.0.0–15.0.1.4Big-ip_local_traffic_manager 15.1.0–15.1.0.4Big-ip_policy_enforcement_manager 11.6.1–11.6.5.2Big-ip_policy_enforcement_manager 12.1.0–12.1.5.2Big-ip_policy_enforcement_manager 13.1.0–13.1.3.4Big-ip_policy_enforcement_manager 14.1.0–14.1.2.6Big-ip_policy_enforcement_manager 15.0.0–15.0.1.4Big-ip_policy_enforcement_manager 15.1.0–15.1.0.4Ssl_orchestrator 11.6.1–11.6.5.2Ssl_orchestrator 12.1.0–12.1.5.2Ssl_orchestrator 13.1.0–13.1.3.4Ssl_orchestrator 14.1.0–14.1.2.6Ssl_orchestrator 15.0.0–15.0.1.4Ssl_orchestrator 15.1.0–15.1.0.4

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

2020-01-01

Published

2021-11-03

Added to KEV

2021-11-03

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: H

High (H)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

1.000 · p100

Known exploited (KEV)

Yes

Known exploits — Сканер-ВС

CVE-2020-5902

cisa · https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Enterprise

48642

exploitdb · https://www.exploit-db.com/exploits/48642

Enterprise

48643

exploitdb · https://www.exploit-db.com/exploits/48643

Enterprise

48711

exploitdb · https://www.exploit-db.com/exploits/48711

Enterprise

Affected software

Product	Vendor	Status
big-ip_access_policy_manager	*	Exploited
big-ip_advanced_firewall_manager	*	Exploited
big-ip_advanced_web_application_firewall	*	Exploited
big-ip_analytics	*	Exploited
big-ip_application_acceleration_manager	*	Exploited
big-ip_application_security_manager	*	Exploited
big-ip_ddos_hybrid_defender	*	Exploited
big-ip_domain_name_system	*	Exploited
big-ip_fraud_protection_service	*	Exploited
big-ip_global_traffic_manager	*	Exploited
big-ip_link_controller	*	Exploited
big-ip_local_traffic_manager	*	Exploited
big-ip_policy_enforcement_manager	*	Exploited
ssl_orchestrator	*	Exploited

Source databases

CVE

Related vulnerabilities

BDU:2021-00701