ID

VAR-202205-0394


CVE

CVE-2022-1388


TITLE

F5 BIG-IP  Vulnerability regarding lack of authentication for critical features in

Trust: 0.8

sources: JVNDB: JVNDB-2022-010066

DESCRIPTION

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all 12.1.x and 11.6.x versions, undisclosed requests may bypass iControl REST authentication. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. F5 BIG-IP There is a vulnerability in the lack of authentication for critical features.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. F5 BIG-IP is an application delivery platform that integrates functions such as traffic management, DNS, inbound and outbound rules, web application firewall, web gateway, and load balancing. F5 BIG-IP iControl REST authentication bypass vulnerability, the vulnerability is due to the bypass flaw in the identity authentication function of the iControl REST component, resulting in the failure of the authorized access mechanism. Unauthenticated attackers exploit this vulnerability by sending maliciously constructed requests to the BIG-IP server, bypassing authentication, executing arbitrary system commands, creating or deleting files, and disabling services on the target system

Trust: 1.8

sources: NVD: CVE-2022-1388 // JVNDB: JVNDB-2022-010066 // VULHUB: VHN-419501 // VULMON: CVE-2022-1388

AFFECTED PRODUCTS

vendor:f5model:big-ip advanced firewall managerscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip link controllerscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip analyticsscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip analyticsscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip analyticsscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip link controllerscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip link controllerscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip link controllerscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip analyticsscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip link controllerscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip link controllerscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip analyticsscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip analyticsscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip application security managerscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip analyticsscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip application security managerscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip link controllerscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip link controllerscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip application security managerscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip link controllerscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip application security managerscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip application security managerscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip analyticsscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip link controllerscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip link controllerscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip application security managerscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip analyticsscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip application security managerscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip link controllerscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip application security managerscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip application security managerscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip analyticsscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip application security managerscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:ltversion:13.1.5

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:gteversion:11.6.1

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip application security managerscope:gteversion:15.1.0

Trust: 1.0

vendor:f5model:big-ip application security managerscope:gteversion:16.1.0

Trust: 1.0

vendor:f5model:big-ip domain name systemscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip global traffic managerscope:ltversion:14.1.4.6

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip fraud protection servicescope:lteversion:11.6.5

Trust: 1.0

vendor:f5model:big-ip advanced firewall managerscope:gteversion:14.1.0

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip analyticsscope:gteversion:13.1.0

Trust: 1.0

vendor:f5model:big-ip policy enforcement managerscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip analyticsscope:ltversion:15.1.5.1

Trust: 1.0

vendor:f5model:big-ip application acceleration managerscope:lteversion:12.1.6

Trust: 1.0

vendor:f5model:big-ip access policy managerscope:gteversion:12.1.0

Trust: 1.0

vendor:f5model:big-ip local traffic managerscope:ltversion:16.1.2.2

Trust: 1.0

vendor:f5model:big-ip analyticsscope: - version: -

Trust: 0.8

vendor:f5model:big-ip local traffic managerscope: - version: -

Trust: 0.8

vendor:f5model:big-ip application acceleration managerscope: - version: -

Trust: 0.8

vendor:f5model:big-ip application security managerscope: - version: -

Trust: 0.8

vendor:f5model:big-ip link controllerscope: - version: -

Trust: 0.8

vendor:f5model:big-ip global traffic managerscope: - version: -

Trust: 0.8

vendor:f5model:big-ip domain name systemscope: - version: -

Trust: 0.8

vendor:f5model:big-ip advanced firewall managerscope: - version: -

Trust: 0.8

vendor:f5model:big-ip fraud protection servicescope: - version: -

Trust: 0.8

vendor:f5model:big-ip access policy managerscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2022-010066 // NVD: CVE-2022-1388

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2022-1388
value: CRITICAL

Trust: 1.0

f5sirt@f5.com: CVE-2022-1388
value: CRITICAL

Trust: 1.0

NVD: CVE-2022-1388
value: CRITICAL

Trust: 0.8

CNNVD: CNNVD-202205-2141
value: CRITICAL

Trust: 0.6

VULHUB: VHN-419501
value: HIGH

Trust: 0.1

VULMON: CVE-2022-1388
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2022-1388
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-419501
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2022-1388
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.1

Trust: 2.0

OTHER: JVNDB-2022-010066
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-419501 // VULMON: CVE-2022-1388 // JVNDB: JVNDB-2022-010066 // CNNVD: CNNVD-202205-2141 // NVD: CVE-2022-1388 // NVD: CVE-2022-1388

PROBLEMTYPE DATA

problemtype:CWE-306

Trust: 1.1

problemtype:Lack of authentication for critical features (CWE-306) [NVD evaluation ]

Trust: 0.8

sources: VULHUB: VHN-419501 // JVNDB: JVNDB-2022-010066 // NVD: CVE-2022-1388

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202205-2141

TYPE

access control error

Trust: 0.6

sources: CNNVD: CNNVD-202205-2141

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-419501

PATCH

title:K23605346url:https://my.f5.com/manage/s/article/K23605346

Trust: 0.8

title:F5 BIG-IP Fixes for access control error vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=191844

Trust: 0.6

title: - url:https://github.com/trhacknon/F5-CVE-2022-1388-Exploit

Trust: 0.1

title: - url:https://github.com/revanmalang/CVE-2022-1388

Trust: 0.1

title: - url:https://github.com/thatonesecguy/CVE-2022-1388-Exploit

Trust: 0.1

title: - url:https://github.com/Chocapikk/CVE-2022-1388

Trust: 0.1

title: - url:https://github.com/iveresk/cve-2022-1388-1veresk

Trust: 0.1

title: - url:https://github.com/devengpk/CVE-2022-1388

Trust: 0.1

title: - url:https://github.com/ZephrFish/F5-CVE-2022-1388-Exploit

Trust: 0.1

title: - url:https://github.com/justakazh/CVE-2022-1388

Trust: 0.1

title: - url:https://github.com/iveresk/cve-2022-1388-iveresk-command-shell

Trust: 0.1

title: - url:https://github.com/Zeyad-Azima/CVE-2022-1388

Trust: 0.1

title: - url:https://github.com/EvilLizard666/CVE-2022-1388

Trust: 0.1

title: - url:https://github.com/Hudi233/CVE-2022-1388

Trust: 0.1

sources: VULMON: CVE-2022-1388 // JVNDB: JVNDB-2022-010066 // CNNVD: CNNVD-202205-2141

EXTERNAL IDS

db:NVDid:CVE-2022-1388

Trust: 3.4

db:PACKETSTORMid:167150

Trust: 1.7

db:PACKETSTORMid:167007

Trust: 1.7

db:PACKETSTORMid:167118

Trust: 1.7

db:JVNDBid:JVNDB-2022-010066

Trust: 0.8

db:EXPLOIT-DBid:50932

Trust: 0.7

db:CS-HELPid:SB2022051005

Trust: 0.6

db:CXSECURITYid:WLB-2022050040

Trust: 0.6

db:CNNVDid:CNNVD-202205-2141

Trust: 0.6

db:CNVDid:CNVD-2022-35519

Trust: 0.1

db:VULHUBid:VHN-419501

Trust: 0.1

db:VULMONid:CVE-2022-1388

Trust: 0.1

sources: VULHUB: VHN-419501 // VULMON: CVE-2022-1388 // JVNDB: JVNDB-2022-010066 // CNNVD: CNNVD-202205-2141 // NVD: CVE-2022-1388

REFERENCES

url:http://packetstormsecurity.com/files/167007/f5-big-ip-remote-code-execution.html

Trust: 2.3

url:http://packetstormsecurity.com/files/167150/f5-big-ip-icontrol-remote-code-execution.html

Trust: 2.3

url:http://packetstormsecurity.com/files/167118/f5-big-ip-16.0.x-remote-code-execution.html

Trust: 1.7

url:https://support.f5.com/csp/article/k23605346

Trust: 1.7

url:https://www.secpod.com/blog/critical-f5-big-ip-remote-code-execution-vulnerability-patch-now/

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2022-1388

Trust: 0.8

url:https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Trust: 0.8

url:https://cxsecurity.com/cveshow/cve-2022-1388/

Trust: 0.6

url:https://cxsecurity.com/issue/wlb-2022050040

Trust: 0.6

url:https://www.exploit-db.com/exploits/50932

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2022051005

Trust: 0.6

url:https://vigilance.fr/vulnerability/f5-big-ip-multiple-vulnerabilities-38241

Trust: 0.6

url:https://vigilance.fr/vulnerability/f5-big-ip-code-execution-via-icontrol-rest-38284

Trust: 0.6

sources: VULHUB: VHN-419501 // JVNDB: JVNDB-2022-010066 // CNNVD: CNNVD-202205-2141 // NVD: CVE-2022-1388

CREDITS

Alt3kx

Trust: 0.6

sources: CNNVD: CNNVD-202205-2141

SOURCES

db:VULHUBid:VHN-419501
db:VULMONid:CVE-2022-1388
db:JVNDBid:JVNDB-2022-010066
db:CNNVDid:CNNVD-202205-2141
db:NVDid:CVE-2022-1388

LAST UPDATE DATE

2024-11-23T22:40:28.624000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-419501date:2023-01-24T00:00:00
db:VULMONid:CVE-2022-1388date:2023-11-02T00:00:00
db:JVNDBid:JVNDB-2022-010066date:2023-08-10T03:10:00
db:CNNVDid:CNNVD-202205-2141date:2022-05-16T00:00:00
db:NVDid:CVE-2022-1388date:2024-11-21T06:40:37.770

SOURCES RELEASE DATE

db:VULHUBid:VHN-419501date:2022-05-05T00:00:00
db:VULMONid:CVE-2022-1388date:2022-05-05T00:00:00
db:JVNDBid:JVNDB-2022-010066date:2023-08-10T00:00:00
db:CNNVDid:CNNVD-202205-2141date:2022-05-04T00:00:00
db:NVDid:CVE-2022-1388date:2022-05-05T17:15:10.570