CVE-2017-14705

HIGH

DenyAll WAF < 6.4.1 - Unauthenticated Remote Code Execution via TailDateFile Type Parameter

Title source: llm
STIX 2.1

Description

DenyAll WAF before 6.4.1 allows unauthenticated remote command execution via TCP port 3001 because shell metacharacters can be inserted into the type parameter to the tailDateFile function in /webservices/stream/tail.php. An iToken authentication parameter is required but can be obtained by exploiting CVE-2017-14706. This affects DenyAll i-Suite LTS 5.5.0 through 5.5.12, i-Suite 5.6, Web Application Firewall 5.7, and Web Application Firewall 6.x before 6.4.1, with On Premises or AWS/Azure cloud deployments.

References (3)

Core 3

Scores

CVSS v3 8.1
EPSS 0.0736
EPSS Percentile 93.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-78
Status published
Products (12)
denyall/i-suite 5.5.0
denyall/i-suite 5.5.9
denyall/i-suite 5.5.10
denyall/i-suite 5.5.11
denyall/i-suite 5.5.12
denyall/i-suite 5.6.0
denyall/web_application_firewall 5.7.0
denyall/web_application_firewall 6.0.0
denyall/web_application_firewall 6.1.0
denyall/web_application_firewall 6.2.0
... and 2 more
Published Sep 22, 2017
Tracked Since Feb 18, 2026