Command Execution Vulnerability in BIG-IP Configuration Utility

Command Execution Vulnerability in BIG-IP Configuration Utility

CVE-2018-15327 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1 or Enterprise Manager 3.1.1, when authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced.

Learn more about our User Device Pen Test.