F5.iControl.iCall.Arbitrary.Command.Execution

Description

This indicates an attack attempt against a remote Code Execution vulnerability in F5 Produce with iCall scripts.
The vulnerability is caused by insufficient validation of client requests. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application.

Affected Products

BIG-IP LTM 11.3.0 - 11.6.0
BIG-IP AAM 11.4.0 - 11.6.0
BIG-IP AFM 11.3.0 - 11.6.0
BIG-IP Analytics 11.3.0 - 11.6.0
BIG-IP APM 11.3.0 - 11.6.0
BIG-IP ASM 11.3.0 - 11.6.0
BIG-IP Edge Gateway 11.3.0
BIG-IP GTM 11.3.0 - 11.6.0
BIG-IP Link Controller 11.3.0 - 11.6.0
BIG-IP PEM 11.3.0 - 11.6.0
BIG-IP PSM 11.3.0 - 11.4.1
BIG-IP WebAccelerator 11.3.0
BIG-IP WOM 11.3.0
Enterprise Manager 3.1.0 - 3.1.1
BIG-IQ Cloud 4.0.0 - 4.5.0
BIG-IQ Device 4.2.0 - 4.5.0
BIG-IQ Security 4.0.0 - 4.5.0
BIG-IQ ADC 4.5.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://support.f5.com/kb/en-us/solutions/public/16000/700/sol16728.html

References