Command Execution Vulnerability in F5 BIG-IP Configuration Utility

Command Execution Vulnerability in F5 BIG-IP Configuration Utility

CVE-2018-5511 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

On F5 BIG-IP 13.1.0-13.1.0.3 or 13.0.0, when authenticated administrative users execute commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced.

Learn more about our Cis Benchmark Audit For F5.