Vulnerability-Lookup

BDU:2021-00701

Vulnerability from fstec - Published: 01.07.2020

Title

Уязвимость интерфейса TMUI средства контроля доступа и удаленной аутентификации BIG-IP Access Policy Manager, межсетевого экрана BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, средства доставки приложений BIG-IP Application Acceleration Manager, средства защиты приложений BIG-IP Application Security Manager, средства защиты от DDoS-атак BIG-IP DDos Hybrid Defender, DNS-сервера BIG-IP DNS, модуля BIG-IP Fraud Protection Service, системы балансировки интернет-трафика BIG-IP Link Controller, системы балансировки локального трафика BIG-IP Local Traffic Manager, системы контроля и управления сетевым трафиком BIG-IP Policy Enforcement Manager, средства расшифровки SSL и перенаправления расшифрованного трафика SSL Orchestrator, позволяющая нарушителю выполнить произвольный код

Description

Уязвимость интерфейса TMUI средства контроля доступа и удаленной аутентификации BIG-IP Access Policy Manager, межсетевого экрана BIG-IP Advanced Firewall Manager, средства доставки приложений BIG-IP Application Acceleration Manager, средства защиты приложений BIG-IP Application Security Manager, средства защиты от DDoS-атак BIG-IP DDos Hybrid Defender, DNS-сервера BIG-IP DNS, модуля BIG-IP Fraud Protection Service, системы балансировки интернет-трафика BIG-IP Link Controller, системы балансировки локального трафика BIG-IP Local Traffic Manager, системы контроля и управления сетевым трафиком BIG-IP Policy Enforcement Manager, средства расшифровки SSL и перенаправления расшифрованного трафика SSL Orchestrator связана с ошибками управления генерацией кода. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнить произвольный код

Severity ?


                    
                      AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor

F5 Networks, Inc.

Software Name

BIG-IP Access Policy Manager, BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP DDos Hybrid Defender, BIG-IP DNS, BIG-IP Fraud Protection Service, BIG-IP Global Traffic Manager, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Enforcement Manager, SSL Orchestrator

Software Version

от 11.6.1 до 11.6.5.2 (BIG-IP Access Policy Manager), от 12.1.0 до 12.1.5.2 (BIG-IP Access Policy Manager), от 13.1.0 до 13.1.3.4 (BIG-IP Access Policy Manager), от 14.1.0 до 14.1.2.6 (BIG-IP Access Policy Manager), от 15.0.0 до 15.0.1.4 (BIG-IP Access Policy Manager), от 15.1.0 до 15.1.0.4 (BIG-IP Access Policy Manager), от 11.6.1 до 11.6.5.2 (BIG-IP Advanced Firewall Manager), от 12.1.0 до 12.1.5.2 (BIG-IP Advanced Firewall Manager), от 13.1.0 до 13.1.3.4 (BIG-IP Advanced Firewall Manager), от 14.1.0 до 14.1.2.6 (BIG-IP Advanced Firewall Manager), от 15.0.0 до 15.0.1.4 (BIG-IP Advanced Firewall Manager), от 15.1.0 до 15.1.0.4 (BIG-IP Advanced Firewall Manager), от 12.1.0 до 12.1.5.2 (BIG-IP Advanced Web Application Firewall), от 13.1.0 до 13.1.3.4 (BIG-IP Advanced Web Application Firewall), от 14.1.0 до 14.1.2.6 (BIG-IP Advanced Web Application Firewall), от 15.0.0 до 15.0.1.4 (BIG-IP Advanced Web Application Firewall), от 15.1.0 до 15.1.0.4 (BIG-IP Advanced Web Application Firewall), от 11.6.1 до 11.6.5.2 (BIG-IP Analytics), от 12.1.0 до 12.1.5.2 (BIG-IP Analytics), от 13.1.0 до 13.1.3.4 (BIG-IP Analytics), от 14.1.0 до 14.1.2.6 (BIG-IP Analytics), от 15.0.0 до 15.0.1.4 (BIG-IP Analytics), от 15.1.0 до 15.1.0.4 (BIG-IP Analytics), от 12.1.0 до 12.1.5.2 (BIG-IP Application Acceleration Manager), от 13.1.0 до 13.1.3.4 (BIG-IP Application Acceleration Manager), от 14.1.0 до 14.1.2.6 (BIG-IP Application Acceleration Manager), от 15.0.0 до 15.0.1.4 (BIG-IP Application Acceleration Manager), от 15.1.0 до 15.1.0.4 (BIG-IP Application Acceleration Manager), от 11.6.1 до 11.6.5.2 (BIG-IP Application Security Manager), от 12.1.0 до 12.1.5.2 (BIG-IP Application Security Manager), от 13.1.0 до 13.1.3.4 (BIG-IP Application Security Manager), от 14.1.0 до 14.1.2.6 (BIG-IP Application Security Manager), от 15.0.0 до 15.0.1.4 (BIG-IP Application Security Manager), от 15.1.0 до 15.1.0.4 (BIG-IP Application Security Manager), от 11.6.1 до 11.6.5.2 (BIG-IP DDos Hybrid Defender), от 12.1.0 до 12.1.5.2 (BIG-IP DDos Hybrid Defender), от 13.1.0 до 13.1.3.4 (BIG-IP DDos Hybrid Defender), от 14.1.0 до 14.1.2.6 (BIG-IP DDos Hybrid Defender), от 15.0.0 до 15.0.1.4 (BIG-IP DDos Hybrid Defender), от 15.1.0 до 15.1.0.4 (BIG-IP DDos Hybrid Defender), от 11.6.1 до 11.6.5.2 (BIG-IP DNS), от 12.1.0 до 12.1.5.2 (BIG-IP DNS), от 13.1.0 до 13.1.3.4 (BIG-IP DNS), от 14.1.0 до 14.1.2.6 (BIG-IP DNS), от 15.0.0 до 15.0.1.4 (BIG-IP DNS), от 15.1.0 до 15.1.0.4 (BIG-IP DNS), от 11.6.1 до 11.6.5.2 (BIG-IP Fraud Protection Service), от 12.1.0 до 12.1.5.2 (BIG-IP Fraud Protection Service), от 13.1.0 до 13.1.3.4 (BIG-IP Fraud Protection Service), от 14.1.0 до 14.1.2.6 (BIG-IP Fraud Protection Service), от 15.0.0 до 15.0.1.4 (BIG-IP Fraud Protection Service), от 15.1.0 до 15.1.0.4 (BIG-IP Fraud Protection Service), от 11.6.1 до 11.6.5.2 (BIG-IP Global Traffic Manager), от 12.1.0 до 12.1.5.2 (BIG-IP Global Traffic Manager), от 13.1.0 до 13.1.3.4 (BIG-IP Global Traffic Manager), от 14.1.0 до 14.1.2.6 (BIG-IP Global Traffic Manager), от 15.0.0 до 15.0.1.4 (BIG-IP Global Traffic Manager), от 15.1.0 до 15.1.0.4 (BIG-IP Global Traffic Manager), от 11.6.1 до 11.6.5.2 (BIG-IP Link Controller), от 12.1.0 до 12.1.5.2 (BIG-IP Link Controller), от 13.1.0 до 13.1.3.4 (BIG-IP Link Controller), от 14.1.0 до 14.1.2.6 (BIG-IP Link Controller), от 15.0.0 до 15.0.1.4 (BIG-IP Link Controller), от 15.1.0 до 15.1.0.4 (BIG-IP Link Controller), от 11.6.1 до 11.6.5.2 (BIG-IP Local Traffic Manager), от 12.1.0 до 12.1.5.2 (BIG-IP Local Traffic Manager), от 13.1.0 до 13.1.3.4 (BIG-IP Local Traffic Manager), от 14.1.0 до 14.1.2.6 (BIG-IP Local Traffic Manager), от 15.0.0 до 15.0.1.4 (BIG-IP Local Traffic Manager), от 15.1.0 до 15.1.0.4 (BIG-IP Local Traffic Manager), от 11.6.1 до 11.6.5.2 (BIG-IP Policy Enforcement Manager), от 12.1.0 до 12.1.5.2 (BIG-IP Policy Enforcement Manager), от 13.1.0 до 13.1.3.4 (BIG-IP Policy Enforcement Manager), от 14.1.0 до 14.1.2.6 (BIG-IP Policy Enforcement Manager), от 15.0.0 до 15.0.1.4 (BIG-IP Policy Enforcement Manager), от 15.1.0 до 15.1.0.4 (BIG-IP Policy Enforcement Manager), от 11.6.1 до 11.6.5.2 (SSL Orchestrator), от 12.1.0 до 12.1.5.2 (SSL Orchestrator), от 13.1.0 до 13.1.3.4 (SSL Orchestrator), от 14.1.0 до 14.1.2.6 (SSL Orchestrator), от 15.0.0 до 15.0.1.4 (SSL Orchestrator), от 15.1.0 до 15.1.0.4 (SSL Orchestrator)

Possible Mitigations

Использование рекомендаций: https://support.f5.com/csp/article/K52145254

Reference

http://packetstormsecurity.com/files/158333/BIG-IP-TMUI-Remote-Code-Execution.html http://packetstormsecurity.com/files/158334/BIG-IP-TMUI-Remote-Code-Execution.html http://packetstormsecurity.com/files/158366/F5-BIG-IP-TMUI-Directory-Traversal-File-Upload-Code-Execution.html http://packetstormsecurity.com/files/158414/Checker-CVE-2020-5902.html http://packetstormsecurity.com/files/158581/F5-Big-IP-13.1.3-Build-0.0.6-Local-File-Inclusion.html https://badpackets.net/over-3000-f5-big-ip-endpoints-vulnerable-to-cve-2020-5902/ https://github.com/Critical-Start/Team-Ares/tree/master/CVE-2020-5902 https://support.f5.com/csp/article/K52145254 https://swarm.ptsecurity.com/rce-in-f5-big-ip/ https://www.criticalstart.com/f5-big-ip-remote-code-execution-exploit/ https://www.kb.cert.org/vuls/id/290915

CWE

CWE-94

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "F5 Networks, Inc.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Access Policy Manager), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Access Policy Manager), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Access Policy Manager), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Access Policy Manager), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Access Policy Manager), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Access Policy Manager), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Advanced Firewall Manager), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Advanced Firewall Manager), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Advanced Firewall Manager), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Advanced Firewall Manager), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Advanced Firewall Manager), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Advanced Firewall Manager), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Advanced Web Application Firewall), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Advanced Web Application Firewall), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Advanced Web Application Firewall), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Advanced Web Application Firewall), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Advanced Web Application Firewall), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Analytics), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Analytics), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Analytics), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Analytics), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Analytics), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Analytics), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Application Acceleration Manager), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Application Acceleration Manager), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Application Acceleration Manager), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Application Acceleration Manager), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Application Acceleration Manager), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Application Security Manager), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Application Security Manager), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Application Security Manager), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Application Security Manager), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Application Security Manager), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Application Security Manager), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP DDos Hybrid Defender), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP DDos Hybrid Defender), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP DDos Hybrid Defender), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP DDos Hybrid Defender), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP DDos Hybrid Defender), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP DDos Hybrid Defender), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP DNS), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP DNS), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP DNS), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP DNS), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP DNS), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP DNS), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Fraud Protection Service), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Fraud Protection Service), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Fraud Protection Service), \u043e\u0442 14.1.0\t\u0434\u043e 14.1.2.6 (BIG-IP Fraud Protection Service), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Fraud Protection Service), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Fraud Protection Service), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Global Traffic Manager), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Global Traffic Manager), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Global Traffic Manager), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Global Traffic Manager), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Global Traffic Manager), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Global Traffic Manager), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Link Controller), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Link Controller), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Link Controller), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Link Controller), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Link Controller), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Link Controller), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Local Traffic Manager), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Local Traffic Manager), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Local Traffic Manager), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Local Traffic Manager), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Local Traffic Manager), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Local Traffic Manager), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (BIG-IP Policy Enforcement Manager), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (BIG-IP Policy Enforcement Manager), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (BIG-IP Policy Enforcement Manager), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (BIG-IP Policy Enforcement Manager), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (BIG-IP Policy Enforcement Manager), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (BIG-IP Policy Enforcement Manager), \u043e\u0442 11.6.1 \u0434\u043e 11.6.5.2 (SSL Orchestrator), \u043e\u0442 12.1.0 \u0434\u043e 12.1.5.2 (SSL Orchestrator), \u043e\u0442 13.1.0 \u0434\u043e 13.1.3.4 (SSL Orchestrator), \u043e\u0442 14.1.0 \u0434\u043e 14.1.2.6 (SSL Orchestrator), \u043e\u0442 15.0.0 \u0434\u043e 15.0.1.4 (SSL Orchestrator), \u043e\u0442 15.1.0 \u0434\u043e 15.1.0.4 (SSL Orchestrator)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://support.f5.com/csp/article/K52145254",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "01.07.2020",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "04.04.2022",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "12.02.2021",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2021-00701",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2020-5902",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "BIG-IP Access Policy Manager, BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP DDos Hybrid Defender, BIG-IP DNS, BIG-IP Fraud Protection Service, BIG-IP Global Traffic Manager, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Enforcement Manager, SSL Orchestrator",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 TMUI \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0439 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 BIG-IP Access Policy Manager, \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0430 BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0434\u043e\u0441\u0442\u0430\u0432\u043a\u0438 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 BIG-IP Application Acceleration Manager, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0437\u0430\u0449\u0438\u0442\u044b \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 BIG-IP Application Security Manager, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0437\u0430\u0449\u0438\u0442\u044b \u043e\u0442 DDoS-\u0430\u0442\u0430\u043a BIG-IP DDos Hybrid Defender, DNS-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 BIG-IP DNS, \u043c\u043e\u0434\u0443\u043b\u044f BIG-IP Fraud Protection Service, \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u0430\u043b\u0430\u043d\u0441\u0438\u0440\u043e\u0432\u043a\u0438 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442-\u0442\u0440\u0430\u0444\u0438\u043a\u0430 BIG-IP Link Controller, \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u0430\u043b\u0430\u043d\u0441\u0438\u0440\u043e\u0432\u043a\u0438 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0442\u0440\u0430\u0444\u0438\u043a\u0430 BIG-IP Local Traffic Manager, \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0435\u0442\u0435\u0432\u044b\u043c \u0442\u0440\u0430\u0444\u0438\u043a\u043e\u043c BIG-IP Policy Enforcement Manager, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0440\u0430\u0441\u0448\u0438\u0444\u0440\u043e\u0432\u043a\u0438 SSL \u0438 \u043f\u0435\u0440\u0435\u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0440\u0430\u0441\u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0442\u0440\u0430\u0444\u0438\u043a\u0430 SSL Orchestrator, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0432\u0435\u0440\u043d\u043e\u0435 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u0435\u0439 \u043a\u043e\u0434\u0430 (\u0412\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430) (CWE-94)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 TMUI \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0439 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 BIG-IP Access Policy Manager, \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0430 BIG-IP Advanced Firewall Manager, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0434\u043e\u0441\u0442\u0430\u0432\u043a\u0438 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 BIG-IP Application Acceleration Manager, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0437\u0430\u0449\u0438\u0442\u044b \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 BIG-IP Application Security Manager, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0437\u0430\u0449\u0438\u0442\u044b \u043e\u0442 DDoS-\u0430\u0442\u0430\u043a BIG-IP DDos Hybrid Defender, DNS-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 BIG-IP DNS, \u043c\u043e\u0434\u0443\u043b\u044f BIG-IP Fraud Protection Service, \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u0430\u043b\u0430\u043d\u0441\u0438\u0440\u043e\u0432\u043a\u0438 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442-\u0442\u0440\u0430\u0444\u0438\u043a\u0430 BIG-IP Link Controller, \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u0430\u043b\u0430\u043d\u0441\u0438\u0440\u043e\u0432\u043a\u0438 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0442\u0440\u0430\u0444\u0438\u043a\u0430 BIG-IP Local Traffic Manager, \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0435\u0442\u0435\u0432\u044b\u043c \u0442\u0440\u0430\u0444\u0438\u043a\u043e\u043c BIG-IP Policy Enforcement Manager, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0440\u0430\u0441\u0448\u0438\u0444\u0440\u043e\u0432\u043a\u0438 SSL \u0438 \u043f\u0435\u0440\u0435\u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0440\u0430\u0441\u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0442\u0440\u0430\u0444\u0438\u043a\u0430 SSL Orchestrator \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u0435\u0439 \u043a\u043e\u0434\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0418\u043d\u044a\u0435\u043a\u0446\u0438\u044f",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "http://packetstormsecurity.com/files/158333/BIG-IP-TMUI-Remote-Code-Execution.html\nhttp://packetstormsecurity.com/files/158334/BIG-IP-TMUI-Remote-Code-Execution.html\nhttp://packetstormsecurity.com/files/158366/F5-BIG-IP-TMUI-Directory-Traversal-File-Upload-Code-Execution.html\nhttp://packetstormsecurity.com/files/158414/Checker-CVE-2020-5902.html\nhttp://packetstormsecurity.com/files/158581/F5-Big-IP-13.1.3-Build-0.0.6-Local-File-Inclusion.html\nhttps://badpackets.net/over-3000-f5-big-ip-endpoints-vulnerable-to-cve-2020-5902/\nhttps://github.com/Critical-Start/Team-Ares/tree/master/CVE-2020-5902\nhttps://support.f5.com/csp/article/K52145254\nhttps://swarm.ptsecurity.com/rce-in-f5-big-ip/\nhttps://www.criticalstart.com/f5-big-ip-remote-code-execution-exploit/\nhttps://www.kb.cert.org/vuls/id/290915",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u0421\u0440\u0435\u0434\u0441\u0442\u0432\u043e \u0437\u0430\u0449\u0438\u0442\u044b, \u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u044b\u0445 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u0437\u0430\u0449\u0438\u0442\u044b, \u041f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e \u0437\u0430\u0449\u0438\u0442\u044b",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-94",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 10)\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,8)"
}

CVE-2020-5902 (GCVE-0-2020-5902)

Vulnerability from cvelistv5 – Published: 2020-07-01 00:00 – Updated: 2025-10-21 23:35

Summary

In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management User Interface (TMUI), also referred to as the Configuration utility, has a Remote Code Execution (RCE) vulnerability in undisclosed pages.

Severity ?

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

Assigner

References

URL

Tags

	https://support.f5.com/csp/article/K52145254
	http://packetstormsecurity.com/files/158333/BIG-I…
	http://packetstormsecurity.com/files/158334/BIG-I…
	http://packetstormsecurity.com/files/158366/F5-BI…
	https://www.kb.cert.org/vuls/id/290915	third-party-advisory
	https://www.criticalstart.com/f5-big-ip-remote-co…
	https://badpackets.net/over-3000-f5-big-ip-endpoi…
	http://packetstormsecurity.com/files/158414/Check…
	https://github.com/Critical-Start/Team-Ares/tree/…
	http://packetstormsecurity.com/files/158581/F5-Bi…
	https://swarm.ptsecurity.com/rce-in-f5-big-ip/
	http://packetstormsecurity.com/files/175671/F5-BI…

Impacted products

	Vendor	Product	Version
	n/a	BIG-IP	Affected: 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, 11.6.1-11.6.5.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T08:47:40.698Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K52145254"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/158333/BIG-IP-TMUI-Remote-Code-Execution.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/158334/BIG-IP-TMUI-Remote-Code-Execution.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/158366/F5-BIG-IP-TMUI-Directory-Traversal-File-Upload-Code-Execution.html"
          },
          {
            "name": "VU#290915",
            "tags": [
              "third-party-advisory",
              "x_transferred"
            ],
            "url": "https://www.kb.cert.org/vuls/id/290915"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.criticalstart.com/f5-big-ip-remote-code-execution-exploit/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://badpackets.net/over-3000-f5-big-ip-endpoints-vulnerable-to-cve-2020-5902/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/158414/Checker-CVE-2020-5902.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/Critical-Start/Team-Ares/tree/master/CVE-2020-5902"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/158581/F5-Big-IP-13.1.3-Build-0.0.6-Local-File-Inclusion.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://swarm.ptsecurity.com/rce-in-f5-big-ip/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/175671/F5-BIG-IP-TMUI-Directory-Traversal-File-Upload-Code-Execution.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 9.8,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2020-5902",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-01-29T20:32:30.395767Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2021-11-03",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-5902"
              },
              "type": "kev"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-22",
                "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:35:41.409Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-5902"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2021-11-03T00:00:00.000Z",
            "value": "CVE-2020-5902 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "BIG-IP",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, 11.6.1-11.6.5.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management User Interface (TMUI), also referred to as the Configuration utility, has a Remote Code Execution (RCE) vulnerability in undisclosed pages."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "RCE",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-11-14T03:06:51.520Z",
        "orgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
        "shortName": "f5"
      },
      "references": [
        {
          "url": "https://support.f5.com/csp/article/K52145254"
        },
        {
          "url": "http://packetstormsecurity.com/files/158333/BIG-IP-TMUI-Remote-Code-Execution.html"
        },
        {
          "url": "http://packetstormsecurity.com/files/158334/BIG-IP-TMUI-Remote-Code-Execution.html"
        },
        {
          "url": "http://packetstormsecurity.com/files/158366/F5-BIG-IP-TMUI-Directory-Traversal-File-Upload-Code-Execution.html"
        },
        {
          "name": "VU#290915",
          "tags": [
            "third-party-advisory"
          ],
          "url": "https://www.kb.cert.org/vuls/id/290915"
        },
        {
          "url": "https://www.criticalstart.com/f5-big-ip-remote-code-execution-exploit/"
        },
        {
          "url": "https://badpackets.net/over-3000-f5-big-ip-endpoints-vulnerable-to-cve-2020-5902/"
        },
        {
          "url": "http://packetstormsecurity.com/files/158414/Checker-CVE-2020-5902.html"
        },
        {
          "url": "https://github.com/Critical-Start/Team-Ares/tree/master/CVE-2020-5902"
        },
        {
          "url": "http://packetstormsecurity.com/files/158581/F5-Big-IP-13.1.3-Build-0.0.6-Local-File-Inclusion.html"
        },
        {
          "url": "https://swarm.ptsecurity.com/rce-in-f5-big-ip/"
        },
        {
          "url": "http://packetstormsecurity.com/files/175671/F5-BIG-IP-TMUI-Directory-Traversal-File-Upload-Code-Execution.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
    "assignerShortName": "f5",
    "cveId": "CVE-2020-5902",
    "datePublished": "2020-07-01T00:00:00.000Z",
    "dateReserved": "2020-01-06T00:00:00.000Z",
    "dateUpdated": "2025-10-21T23:35:41.409Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2021-00701

CVE-2020-5902 (GCVE-0-2020-5902)

Tags

Sightings

Nomenclature