Privilege Escalation Vulnerability in F5 BIG-IP APM Client

Privilege Escalation Vulnerability in F5 BIG-IP APM Client

CVE-2018-5529 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The svpn component of the F5 BIG-IP APM client prior to version 7.1.7 for Linux and Mac OS X runs as a privileged process and can allow an unprivileged user to assume super-user privileges on the local client host. A malicious local unprivileged user may gain knowledge of sensitive information, manipulate certain data, or disrupt service.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.