Privilege Escalation: Local User Can Change Passwords of Other Users on F5 BIG-IQ Centralized Management
CVE-2017-6152 · LOW Severity
AV:L/AC:L/AU:N/C:N/I:P/A:N
A local user on F5 BIG-IQ Centralized Management 5.1.0-5.2.0 with the Access Manager role has privileges to change the passwords of other users on the system, including the local admin account password.
Learn more about our Cis Benchmark Audit For F5.