NOMISEC-j-baines/tippa-my-tongue

NOMISEC WORKING POC

Exploit for CVE-2022-1388 - F5 BIG-IP iControl RCE via REST Authentication Bypass

AI Analysis

This exploit leverages CVE-2022-1388 (authentication bypass) and CVE-2022-41800 (command injection) to achieve a root reverse shell on F5 BIG-IP devices. It uses the `/mgmt/shared/iapp/rpm-spec-creator` and `/mgmt/shared/iapp/build-package` endpoints to execute arbitrary commands via a crafted RPM spec file.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type remote

Files 4

https://github.com/j-baines/tippa-my-tongue

Stars 1

Forks 0

Last Push Apr 12, 2023

Authors

Jacob Baines j-baines

Vulnerability

CVE-2022-1388

F5 BIG-IP iControl RCE via REST Authentication Bypass

CRITICAL KEV

CVSS 9.8