Vulnerability Name: CVE-2015-7394 (CCN-107940) Assigned: 2015-10-27 Published: 2015-10-27 Updated: 2019-06-06 Summary: The datastor kernel module in F5 BIG-IP Analytics, APM, ASM, Link Controller, and LTM 11.1.0 before 12.0.0, BIG-IP AAM 11.4.0 before 12.0.0, BIG-IP AFM, PEM 11.3.0 before 12.0.0, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.1.0 through 11.3.0, BIG-IP GTM 11.1.0 through 11.6.0, BIG-IP PSM 11.1.0 through 11.4.1, BIG-IQ Cloud and Security 4.0.0 through 4.5.0, BIG-IQ Device 4.2.0 through 4.5.0, BIG-IQ ADC 4.5.0, and Enterprise Manager 3.0.0 through 3.1.1 allows remote authenticated users to cause a denial of service or gain privileges by leveraging permission to upload and execute code. CVSS v3 Severity: 8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): LowUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): HighIntegrity (I): HighAvailibility (A): High
CVSS v2 Severity: 9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAuthentication (Au): Single_InstanceImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAthentication (Au): Single_InstanceImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
Vulnerability Type: CWE-264 Vulnerability Consequences: Gain Privileges References: Source: MITRECVE-2015-7394 1034025 1034026 f5-bigip-cve20157394-priv-esc(107940) Datastor kernel vulnerability CVE-2015-7394 https://support.f5.com/kb/en-us/solutions/public/17000/400/sol17407.html Vulnerable Configuration: Configuration 1 :cpe:/a:f5:big-iq_device:4.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_device:4.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_device:4.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_device:4.5.0:*:*:*:*:*:*:* Configuration 2 :cpe:/a:f5:big-ip_policy_enforcement_manager:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.6.0:*:*:*:*:*:*:* Configuration 3 :cpe:/a:f5:big-ip_global_traffic_manager:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.6.0:*:*:*:*:*:*:* Configuration 4 :cpe:/a:f5:big-ip_analytics:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:11.6.0:*:*:*:*:*:*:* Configuration 5 :cpe:/a:f5:big-ip_link_controller:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.6.0:*:*:*:*:*:*:* Configuration 6 :cpe:/a:f5:big-ip_webaccelerator:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_webaccelerator:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_webaccelerator:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_webaccelerator:11.3.0:*:*:*:*:*:*:* Configuration 7 :cpe:/a:f5:big-ip_application_security_manager:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.6.0:*:*:*:*:*:*:* Configuration 8 :cpe:/a:f5:big-iq_security:4.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_security:4.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_security:4.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_security:4.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_security:4.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_security:4.5.0:*:*:*:*:*:*:* Configuration 9 :cpe:/a:f5:big-ip_wan_optimization_manager:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_wan_optimization_manager:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_wan_optimization_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_wan_optimization_manager:11.3.0:*:*:*:*:*:*:* Configuration 10 :cpe:/a:f5:big-ip_edge_gateway:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_edge_gateway:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_edge_gateway:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_edge_gateway:11.3.0:*:*:*:*:*:*:* Configuration 11 :cpe:/a:f5:big-ip_access_policy_manager:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.6.0:*:*:*:*:*:*:* Configuration 12 :cpe:/a:f5:big-ip_advanced_firewall_manager:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.6.0:*:*:*:*:*:*:* Configuration 13 :cpe:/a:f5:big-ip_enterprise_manager:3.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_enterprise_manager:3.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_enterprise_manager:3.1.1:*:*:*:*:*:*:* Configuration 14 :cpe:/a:f5:big-ip_application_acceleration_manager:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:11.6.0:*:*:*:*:*:*:* Configuration 15 :cpe:/a:f5:big-ip_protocol_security_module:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_protocol_security_module:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_protocol_security_module:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_protocol_security_module:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_protocol_security_module:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_protocol_security_module:11.4.1:*:*:*:*:*:*:* Configuration 16 :cpe:/a:f5:big-iq_cloud:4.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_cloud:4.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_cloud:4.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_cloud:4.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_cloud:4.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-iq_cloud:4.5.0:*:*:*:*:*:*:* Configuration 17 :cpe:/a:f5:big-ip_local_traffic_manager:11.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.2.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.3.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.4.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.5.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.5.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.5.3:*:*:*:*:*:*:* Configuration 18 :cpe:/a:f5:big-iq_adc:4.5.0:*:*:*:*:*:*:* Configuration CCN 1 :cpe:/a:f5:big-ip_local_traffic_manager:11.5.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.4.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.5.3:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.3.0:*:*:*:*:*:*:* BACK
f5 big-iq device 4.2.0
f5 big-iq device 4.3.0
f5 big-iq device 4.4.0
f5 big-iq device 4.5.0
f5 big-ip policy enforcement manager 11.3.0
f5 big-ip policy enforcement manager 11.4.0
f5 big-ip policy enforcement manager 11.4.1
f5 big-ip policy enforcement manager 11.5.0
f5 big-ip policy enforcement manager 11.5.1
f5 big-ip policy enforcement manager 11.5.2
f5 big-ip policy enforcement manager 11.5.3
f5 big-ip policy enforcement manager 11.6.0
f5 big-ip global traffic manager 11.1.0
f5 big-ip global traffic manager 11.2.0
f5 big-ip global traffic manager 11.2.1
f5 big-ip global traffic manager 11.3.0
f5 big-ip global traffic manager 11.4.0
f5 big-ip global traffic manager 11.4.1
f5 big-ip global traffic manager 11.5.0
f5 big-ip global traffic manager 11.5.1
f5 big-ip global traffic manager 11.5.2
f5 big-ip global traffic manager 11.5.3
f5 big-ip global traffic manager 11.6.0
f5 big-ip analytics 11.1.0
f5 big-ip analytics 11.2.0
f5 big-ip analytics 11.2.1
f5 big-ip analytics 11.3.0
f5 big-ip analytics 11.4.0
f5 big-ip analytics 11.4.1
f5 big-ip analytics 11.5.0
f5 big-ip analytics 11.5.1
f5 big-ip analytics 11.5.2
f5 big-ip analytics 11.5.3
f5 big-ip analytics 11.6.0
f5 big-ip link controller 11.1.0
f5 big-ip link controller 11.2.0
f5 big-ip link controller 11.2.1
f5 big-ip link controller 11.3.0
f5 big-ip link controller 11.4.0
f5 big-ip link controller 11.4.1
f5 big-ip link controller 11.5.0
f5 big-ip link controller 11.5.1
f5 big-ip link controller 11.5.2
f5 big-ip link controller 11.5.3
f5 big-ip link controller 11.6.0
f5 big-ip webaccelerator 11.1.0
f5 big-ip webaccelerator 11.2.0
f5 big-ip webaccelerator 11.2.1
f5 big-ip webaccelerator 11.3.0
f5 big-ip application security manager 11.1.0
f5 big-ip application security manager 11.2.0
f5 big-ip application security manager 11.2.1
f5 big-ip application security manager 11.3.0
f5 big-ip application security manager 11.4.0
f5 big-ip application security manager 11.4.1
f5 big-ip application security manager 11.5.0
f5 big-ip application security manager 11.5.1
f5 big-ip application security manager 11.5.2
f5 big-ip application security manager 11.5.3
f5 big-ip application security manager 11.6.0
f5 big-iq security 4.0.0
f5 big-iq security 4.1.0
f5 big-iq security 4.2.0
f5 big-iq security 4.3.0
f5 big-iq security 4.4.0
f5 big-iq security 4.5.0
f5 big-ip wan optimization manager 11.1.0
f5 big-ip wan optimization manager 11.2.0
f5 big-ip wan optimization manager 11.2.1
f5 big-ip wan optimization manager 11.3.0
f5 big-ip edge gateway 11.1.0
f5 big-ip edge gateway 11.2.0
f5 big-ip edge gateway 11.2.1
f5 big-ip edge gateway 11.3.0
f5 big-ip access policy manager 11.1.0
f5 big-ip access policy manager 11.2.0
f5 big-ip access policy manager 11.2.1
f5 big-ip access policy manager 11.3.0
f5 big-ip access policy manager 11.4.0
f5 big-ip access policy manager 11.4.1
f5 big-ip access policy manager 11.5.0
f5 big-ip access policy manager 11.5.1
f5 big-ip access policy manager 11.5.2
f5 big-ip access policy manager 11.5.3
f5 big-ip access policy manager 11.6.0
f5 big-ip advanced firewall manager 11.3.0
f5 big-ip advanced firewall manager 11.4.0
f5 big-ip advanced firewall manager 11.4.1
f5 big-ip advanced firewall manager 11.5.0
f5 big-ip advanced firewall manager 11.5.1
f5 big-ip advanced firewall manager 11.5.2
f5 big-ip advanced firewall manager 11.5.3
f5 big-ip advanced firewall manager 11.6.0
f5 big-ip enterprise manager 3.0.0
f5 big-ip enterprise manager 3.1.0
f5 big-ip enterprise manager 3.1.1
f5 big-ip application acceleration manager 11.4.0
f5 big-ip application acceleration manager 11.4.1
f5 big-ip application acceleration manager 11.5.0
f5 big-ip application acceleration manager 11.5.1
f5 big-ip application acceleration manager 11.5.2
f5 big-ip application acceleration manager 11.5.3
f5 big-ip application acceleration manager 11.6.0
f5 big-ip protocol security module 11.1.0
f5 big-ip protocol security module 11.2.0
f5 big-ip protocol security module 11.2.1
f5 big-ip protocol security module 11.3.0
f5 big-ip protocol security module 11.4.0
f5 big-ip protocol security module 11.4.1
f5 big-iq cloud 4.0.0
f5 big-iq cloud 4.1.0
f5 big-iq cloud 4.2.0
f5 big-iq cloud 4.3.0
f5 big-iq cloud 4.4.0
f5 big-iq cloud 4.5.0
f5 big-ip local traffic manager 11.1.0
f5 big-ip local traffic manager 11.2.0
f5 big-ip local traffic manager 11.2.1
f5 big-ip local traffic manager 11.3.0
f5 big-ip local traffic manager 11.4.0
f5 big-ip local traffic manager 11.4.1
f5 big-ip local traffic manager 11.5.0
f5 big-ip local traffic manager 11.5.1
f5 big-ip local traffic manager 11.5.2
f5 big-ip local traffic manager 11.5.3
f5 big-iq adc 4.5.0
f5 big-ip local traffic manager 11.5.1
f5 big-ip access policy manager 11.4.0
f5 big-ip local traffic manager 11.5.3
f5 big-ip local traffic manager 11.3.0
Denotes that component is vulnerable