On F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.2, or 11.2.1-11.6.3.1, Enterprise Manager 3.1.1, BIG-IQ Centralized Management 5.0.0-5.4.0 or 4.6.0, BIG-IQ Cloud and Orchestration 1.0.0, or F5 iWorkflow 2.0.2-2.3.0, authenticated users granted TMOS Shell (tmsh) access can access objects on the file system which would normally be disallowed by tmsh restrictions. This allows for authenticated, low privileged attackers to exfiltrate objects on the file system which should not be allowed.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: f5
Published: 2018-05-02T13:00:00Z
Updated: 2024-09-17T02:41:51.080Z
Reserved: 2018-01-12T00:00:00
Link: CVE-2018-5516
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-05-02T13:29:00.617
Modified: 2024-11-21T04:08:58.470
Link: CVE-2018-5516
Redhat
No data.