Bug ID 737739: Bash shell still accessible for admin even if disabled

Last Modified: Sep 06, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.4, 14.1.0.5, 14.1.0.6, 14.1.2, 15.0.0, 15.0.1

Opened: Jul 20, 2018
Severity: 3-Major

Symptoms

With the administrator role, you have an option in TMUI to disable or restrict terminal access. If you disable or restrict access, the corresponding REST endpoint is neither disabled nor restricted.

Impact

Users with the Administrator role can obtain shell access via REST. With terminal access disabled: -- If you attempt to login using SSH, you will not be to do so. -- If you make a POST request to the /mgmt/tm/util/bash endpoint with a body that includes a command to run, that command will be run. With access to TMSH restricted: -- A POST request to the /mgmt/tm/util/bash endpoint that includes a body with a command to run will be run.

Conditions

Use TMUI as the admin, or as a user with the administrator role, and either of the following: -- Disable terminal access. -- Restrict access to TMSH.

Workaround

None.

Fix Information

None

Behavior Change