CVE-2017-0304 - OpenCVE

A SQL injection vulnerability exists in the BIG-IP AFM management UI on versions 12.0.0, 12.1.0, 12.1.1, 12.1.2 and 13.0.0 that may allow a copy of the firewall rules to be tampered with and impact the Configuration Utility until there is a resync of the rules. Traffic processing and the live firewall rules in use are not affected.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:S/C:P/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
F5	Big-ip Advanced Firewall Manager

Configuration 1 [-]

OR	cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.0.0:::::::*
	cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.0:::::::*
	cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.1:::::::*
	cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.2:::::::*
	cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0:::::::*

No data.

References

Link	Providers
http://www.securityfocus.com/bid/102332
http://www.securitytracker.com/id/1040041
https://support.f5.com/csp/article/K39428424

History

No history.

MITRE

Status: PUBLISHED

Assigner: f5

Published: 2017-12-21T17:00:00Z

Updated: 2024-09-16T17:53:20.416Z

Reserved: 2016-11-09T00:00:00

Link: CVE-2017-0304

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2017-12-21T17:29:00.263

Modified: 2018-01-08T15:32:19.147

Link: CVE-2017-0304

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "BIG-IP AFM", "vendor": "F5 Networks, Inc.", "versions": [{"status": "affected", "version": "12.0.0, 12.1.0, 12.1.1, 12.1.2"}, {"status": "affected", "version": "13.0.0"}]}], "datePublic": "2017-12-20T00:00:00", "descriptions": [{"lang": "en", "value": "A SQL injection vulnerability exists in the BIG-IP AFM management UI on versions 12.0.0, 12.1.0, 12.1.1, 12.1.2 and 13.0.0 that may allow a copy of the firewall rules to be tampered with and impact the Configuration Utility until there is a resync of the rules. Traffic processing and the live firewall rules in use are not affected."}], "problemTypes": [{"descriptions": [{"description": "Input Validation", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-03T10:57:01", "orgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab", "shortName": "f5"}, "references": [{"name": "102332", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/102332"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.f5.com/csp/article/K39428424"}, {"name": "1040041", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1040041"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "f5sirt@f5.com", "DATE_PUBLIC": "2017-12-20T00:00:00", "ID": "CVE-2017-0304", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "BIG-IP AFM", "version": {"version_data": [{"version_value": "12.0.0, 12.1.0, 12.1.1, 12.1.2"}, {"version_value": "13.0.0"}]}}]}, "vendor_name": "F5 Networks, Inc."}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A SQL injection vulnerability exists in the BIG-IP AFM management UI on versions 12.0.0, 12.1.0, 12.1.1, 12.1.2 and 13.0.0 that may allow a copy of the firewall rules to be tampered with and impact the Configuration Utility until there is a resync of the rules. Traffic processing and the live firewall rules in use are not affected."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Input Validation"}]}]}, "references": {"reference_data": [{"name": "102332", "refsource": "BID", "url": "http://www.securityfocus.com/bid/102332"}, {"name": "https://support.f5.com/csp/article/K39428424", "refsource": "CONFIRM", "url": "https://support.f5.com/csp/article/K39428424"}, {"name": "1040041", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1040041"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T13:03:56.538Z"}, "title": "CVE Program Container", "references": [{"name": "102332", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/102332"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.f5.com/csp/article/K39428424"}, {"name": "1040041", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1040041"}]}]}, "cveMetadata": {"assignerOrgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab", "assignerShortName": "f5", "cveId": "CVE-2017-0304", "datePublished": "2017-12-21T17:00:00Z", "dateReserved": "2016-11-09T00:00:00", "dateUpdated": "2024-09-16T17:53:20.416Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "532AAF54-64EF-4852-B4F1-D5E660463704", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "BC827031-CA39-4081-8CE0-30EAC78DF756", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "7569903B-3A15-4A10-863B-6828337DD268", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "45825991-D17D-42F1-87B4-7DF86B098B45", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "8C4E5F36-434B-48E1-9715-4EEC22FB23D1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A SQL injection vulnerability exists in the BIG-IP AFM management UI on versions 12.0.0, 12.1.0, 12.1.1, 12.1.2 and 13.0.0 that may allow a copy of the firewall rules to be tampered with and impact the Configuration Utility until there is a resync of the rules. Traffic processing and the live firewall rules in use are not affected."}, {"lang": "es", "value": "Existe una vulnerabilidad de inyecci\u00f3n SQL en la interfaz de usuario de gesti\u00f3n de BIG-IP AFM en versiones 12.0.0, 12.1.0, 12.1.1, 12.1.2 y 13.0.0 que podr\u00eda permitir que se manipule una copia de las reglas de firewall para que provoque un impacto en Configuration Utility hasta que se vuelvan a sincronizar las reglas. El procesamiento del tr\u00e1fico y las reglas de firewall activas no se ven afectadas."}], "id": "CVE-2017-0304", "lastModified": "2018-01-08T15:32:19.147", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 5.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 2.5, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-12-21T17:29:00.263", "references": [{"source": "f5sirt@f5.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/102332"}, {"source": "f5sirt@f5.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040041"}, {"source": "f5sirt@f5.com", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://support.f5.com/csp/article/K39428424"}], "sourceIdentifier": "f5sirt@f5.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "nvd@nist.gov", "type": "Primary"}]}