Lucene search
PRIOn knowledge basePRION:CVE-2020-5873HistoryApr 30, 2020 - 9:15 p.m.
Cross site request forgery (csrf)
2020-04-3021:15:00
PRIOn knowledge base
www.prio-n.com
4
On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.1-11.6.5 and BIG-IQ 5.2.0-7.1.0, a user associated with the Resource Administrator role who has access to the secure copy (scp) utility but does not have access to Advanced Shell (bash) can execute arbitrary commands using a maliciously crafted scp request.
References
Related
nessus
nessus
F5 Networks BIG-IP : F5 secure shell vulnerability (K03585731)
2020-04-30 00:00:00
F5 Networks BIG-IP : BIG-IP and BIG-IQ scp vulnerability (K98606833)
2024-02-14 00:00:00
cvelist
cvelist
CVE-2020-5873
2020-04-30 20:21:54
CVE-2024-21782 BIG-IP and BIG-IQ secure copy vulnerability
2024-02-14 16:30:20
nvd
nvd
CVE-2020-5873
2020-04-30 21:15:16
CVE-2024-21782
2024-02-14 17:15:12
f5
f5
K03585731 : F5 secure shell vulnerability CVE-2020-5873
2020-04-30 00:00:00
K98606833 : BIG-IP and BIG-IQ scp vulnerability CVE-2024-21782
2024-02-14 00:00:00
cve
cve
CVE-2020-5873
2020-04-30 21:15:16
CVE-2024-21782
2024-02-14 17:15:12
prion
prion
Command injection
2024-02-14 17:15:00