Privilege Escalation: Local User Can Change Passwords of Other Users on F5 BIG-IQ Centralized Management

Privilege Escalation: Local User Can Change Passwords of Other Users on F5 BIG-IQ Centralized Management

CVE-2017-6152 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

A local user on F5 BIG-IQ Centralized Management 5.1.0-5.2.0 with the Access Manager role has privileges to change the passwords of other users on the system, including the local admin account password.

Learn more about our Cis Benchmark Audit For F5.