Vulnerabilities > CVE-2017-6128 - Unspecified vulnerability in F5 products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

nessus

NVD

Published: 2017-05-01

Updated: 2019-10-03

Summary

An attacker may be able to cause a denial-of-service (DoS) attack against the sshd component in F5 BIG-IP, Enterprise Manager, BIG-IQ, and iWorkflow.

Vulnerable Configurations

Part	Description	Count
Application	F5 F5 BIG IP Local Traffic Manager 11.6.1 F5 BIG IP Local Traffic Manager 11.2.1 F5 BIG IP Local Traffic Manager 11.4.1 F5 BIG IP Local Traffic Manager 11.5.4 F5 BIG IP Local Traffic Manager 11.6.0 F5 BIG IP Local Traffic Manager 11.5.1 F5 BIG IP Local Traffic Manager 11.5.2 F5 BIG IP Local Traffic Manager 11.5.3 F5 BIG IP Local Traffic Manager 11.5.0 F5 BIG IP Local Traffic Manager 11.4.0 F5 BIG IP Application Acceleration Manager 11.5.2 F5 BIG IP Application Acceleration Manager 11.4.1 F5 BIG IP Application Acceleration Manager 11.5.1 F5 BIG IP Application Acceleration Manager 11.6.1 F5 BIG IP Application Acceleration Manager 11.5.4 F5 BIG IP Application Acceleration Manager 11.5.3 F5 BIG IP Application Acceleration Manager 11.6.0 F5 BIG IP Application Acceleration Manager 11.5.0 F5 BIG IP Application Acceleration Manager 11.4.0 F5 BIG IP Advanced Firewall Manager 11.5.4 F5 BIG IP Advanced Firewall Manager 11.5.2 F5 BIG IP Advanced Firewall Manager 11.6.0 F5 BIG IP Advanced Firewall Manager 11.4.1 F5 BIG IP Advanced Firewall Manager 11.5.0 F5 BIG IP Advanced Firewall Manager 11.5.1 F5 BIG IP Advanced Firewall Manager 11.5.3 F5 BIG IP Advanced Firewall Manager 11.4.0 F5 BIG IP Analytics 11.4.1 F5 BIG IP Analytics 11.6.0 F5 BIG IP Analytics 11.2.1 F5 BIG IP Analytics 11.6.1 F5 BIG IP Analytics 11.5.4 F5 BIG IP Analytics 11.5.2 F5 BIG IP Analytics 11.5.1 F5 BIG IP Analytics 11.4.0 F5 BIG IP Analytics 11.5.3 F5 BIG IP Analytics 11.5.0 F5 BIG IP Access Policy Manager 11.5.2 F5 BIG IP Access Policy Manager 11.5.0 F5 BIG IP Access Policy Manager 11.5.1 F5 BIG IP Access Policy Manager 11.2.1 F5 BIG IP Access Policy Manager 11.5.3 F5 BIG IP Access Policy Manager 11.4.0 F5 BIG IP Access Policy Manager 11.5.4 F5 BIG IP Access Policy Manager 11.6.1 F5 BIG IP Access Policy Manager 11.6.0 F5 BIG IP Access Policy Manager 11.4.1 F5 BIG IP Application Security Manager 11.5.1 F5 BIG IP Application Security Manager 11.6.0 F5 BIG IP Application Security Manager 11.4.0 F5 BIG IP Application Security Manager 11.4.1 F5 BIG IP Application Security Manager 11.5.3 F5 BIG IP Application Security Manager 11.6.1 F5 BIG IP Application Security Manager 11.5.0 F5 BIG IP Application Security Manager 11.5.4 F5 BIG IP Application Security Manager 11.5.2 F5 BIG IP Application Security Manager 11.2.1 F5 BIG IP Edge Gateway 11.2.1 F5 BIG IP Global Traffic Manager 11.6.1 F5 BIG IP Global Traffic Manager 11.4.0 F5 BIG IP Global Traffic Manager 11.5.1 F5 BIG IP Global Traffic Manager 11.5.4 F5 BIG IP Global Traffic Manager 11.6.0 F5 BIG IP Global Traffic Manager 11.4.1 F5 BIG IP Global Traffic Manager 11.2.1 F5 BIG IP Global Traffic Manager 11.5.2 F5 BIG IP Global Traffic Manager 11.5.0 F5 BIG IP Global Traffic Manager 11.5.3 F5 BIG IP Link Controller 11.4.0 F5 BIG IP Link Controller 11.5.3 F5 BIG IP Link Controller 11.5.1 F5 BIG IP Link Controller 11.5.2 F5 BIG IP Link Controller 11.4.1 F5 BIG IP Link Controller 11.6.1 F5 BIG IP Link Controller 11.5.0 F5 BIG IP Link Controller 11.6.0 F5 BIG IP Link Controller 11.5.4 F5 BIG IP Link Controller 11.2.1 F5 BIG IP Policy Enforcement Manager 11.5.2 F5 BIG IP Policy Enforcement Manager 11.5.0 F5 BIG IP Policy Enforcement Manager 11.4.0 F5 BIG IP Policy Enforcement Manager 11.5.3 F5 BIG IP Policy Enforcement Manager 11.6.1 F5 BIG IP Policy Enforcement Manager 11.4.1 F5 BIG IP Policy Enforcement Manager 11.5.4 F5 BIG IP Policy Enforcement Manager 11.6.0 F5 BIG IP Policy Enforcement Manager 11.5.1 F5 BIG IP Protocol Security Module 11.4.1 F5 BIG IP Protocol Security Module 11.4.0 F5 BIG IP Webaccelerator 11.2.1 F5 BIG IP Websafe 11.6.1 F5 BIG IP Websafe 11.6.0 F5 Enterprise Manager 3.1.1 F5 BIG IQ Cloud 4.4.0 F5 BIG IQ Cloud 4.5.0 F5 BIG IQ Device 4.5.0 F5 BIG IQ Device 4.4.0 F5 BIG IQ Security 4.4.0 F5 BIG IQ Security 4.5.0 F5 BIG IQ Application Delivery Controller 4.5.0 F5 BIG IQ Centralized Management 4.6.0 F5 BIG IQ Cloud AND Orchestration 1.0.0 F5 F5 Iworkflow 2.0.0	103

Nessus

NASL family	F5 Networks Local Security Checks
NASL id	F5_BIGIP_SOL92140924.NASL
description	An undisclosed traffic pattern received on an F5 management interface may cause the Secure Shell Daemon ( sshd ) to stop responding, resulting in a Denial-of-Service (DoS). (CVE-2017-6128)
last seen	2020-06-01
modified	2020-06-02
plugin id	99546
published	2017-04-21
reporter	This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/99546
title	F5 Networks BIG-IP : F5 management sshd vulnerability (K92140924)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from F5 Networks BIG-IP Solution K92140924. # # The text description of this plugin is (C) F5 Networks. # include("compat.inc"); if (description) { script_id(99546); script_version("3.8"); script_cvs_date("Date: 2019/01/04 10:03:41"); script_cve_id("CVE-2017-6128"); script_name(english:"F5 Networks BIG-IP : F5 management sshd vulnerability (K92140924)"); script_summary(english:"Checks the BIG-IP version."); script_set_attribute( attribute:"synopsis", value:"The remote device is missing a vendor-supplied security patch." ); script_set_attribute( attribute:"description", value: "An undisclosed traffic pattern received on an F5 management interface may cause the Secure Shell Daemon ( sshd ) to stop responding, resulting in a Denial-of-Service (DoS). (CVE-2017-6128)" ); script_set_attribute( attribute:"see_also", value:"https://support.f5.com/csp/article/K92140924" ); script_set_attribute( attribute:"solution", value: "Upgrade to one of the non-vulnerable versions listed in the F5 Solution K92140924." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"potential_vulnerability", value:"true"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_access_policy_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_advanced_firewall_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_acceleration_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_security_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_visibility_and_reporting"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_global_traffic_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_link_controller"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_local_traffic_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_policy_enforcement_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_webaccelerator"); script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip"); script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip_protocol_security_manager"); script_set_attribute(attribute:"patch_publication_date", value:"2017/04/20"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_set_attribute(attribute:"plugin_publication_date", value:"2017/04/21"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"F5 Networks Local Security Checks"); script_dependencies("f5_bigip_detect.nbin"); script_require_keys("Host/local_checks_enabled", "Host/BIG-IP/hotfix", "Host/BIG-IP/modules", "Host/BIG-IP/version", "Settings/ParanoidReport"); exit(0); } include("f5_func.inc"); if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); version = get_kb_item("Host/BIG-IP/version"); if ( ! version ) audit(AUDIT_OS_NOT, "F5 Networks BIG-IP"); if ( isnull(get_kb_item("Host/BIG-IP/hotfix")) ) audit(AUDIT_KB_MISSING, "Host/BIG-IP/hotfix"); if ( ! get_kb_item("Host/BIG-IP/modules") ) audit(AUDIT_KB_MISSING, "Host/BIG-IP/modules"); sol = "K92140924"; vmatrix = make_array(); if (report_paranoia < 2) audit(AUDIT_PARANOID); # AFM vmatrix["AFM"] = make_array(); vmatrix["AFM"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1"); vmatrix["AFM"]["unaffected"] = make_list("13.0.0","12.0.0-12.1.2","11.6.1HF2","11.5.4HF3"); # AM vmatrix["AM"] = make_array(); vmatrix["AM"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1"); vmatrix["AM"]["unaffected"] = make_list("13.0.0","12.0.0-12.1.2","11.6.1HF2","11.5.4HF3"); # APM vmatrix["APM"] = make_array(); vmatrix["APM"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1","11.2.1"); vmatrix["APM"]["unaffected"] = make_list("13.0.0","12.0.0-12.1.2","11.6.1HF2","11.5.4HF3"); # ASM vmatrix["ASM"] = make_array(); vmatrix["ASM"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1","11.2.1"); vmatrix["ASM"]["unaffected"] = make_list("13.0.0","12.0.0-12.1.2","11.6.1HF2","11.5.4HF3"); # AVR vmatrix["AVR"] = make_array(); vmatrix["AVR"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1","11.2.1"); vmatrix["AVR"]["unaffected"] = make_list("13.0.0","12.0.0-12.1.2","11.6.1HF2","11.5.4HF3"); # GTM vmatrix["GTM"] = make_array(); vmatrix["GTM"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1","11.2.1"); vmatrix["GTM"]["unaffected"] = make_list("11.6.1HF2","11.5.4HF3"); # LC vmatrix["LC"] = make_array(); vmatrix["LC"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1","11.2.1"); vmatrix["LC"]["unaffected"] = make_list("13.0.0","12.0.0-12.1.2","11.6.1HF2","11.5.4HF3"); # LTM vmatrix["LTM"] = make_array(); vmatrix["LTM"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1","11.2.1"); vmatrix["LTM"]["unaffected"] = make_list("13.0.0","12.0.0-12.1.2","11.6.1HF2","11.5.4HF3"); # PEM vmatrix["PEM"] = make_array(); vmatrix["PEM"]["affected" ] = make_list("11.6.0-11.6.1","11.5.0-11.5.4","11.4.0-11.4.1"); vmatrix["PEM"]["unaffected"] = make_list("13.0.0","12.0.0-12.1.2","11.6.1HF2","11.5.4HF3"); if (bigip_is_affected(vmatrix:vmatrix, sol:sol)) { if (report_verbosity > 0) security_warning(port:0, extra:bigip_report_get()); else security_warning(0); exit(0); } else { tested = bigip_get_tested_modules(); audit_extra = "For BIG-IP module(s) " + tested + ","; if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version); else audit(AUDIT_HOST_NOT, "running any of the affected modules"); }

Summary

Vulnerable Configurations

Nessus

References