CVE-2018-15316

Summary

In F5 BIG-IP APM 13.0.0-13.1.1.1, APM Client 7.1.5-7.1.6, and/or Edge Client 7101-7160, the BIG-IP APM Edge Client component loads the policy library with user permission and bypassing the endpoint checks.

Affected Software

VendorProductVersion RangeStatus
F5 Networks, Inc.BIG-IP (APM)13.0.0-13.1.1.1affected
F5 Networks, Inc.BIG-IP APM Clients7.1.5 - 7.1.6affected
F5 Networks, Inc.BIG-IP Edge Client7101 - 7160affected

Weaknesses

  • Privilege escalation

ADP Enrichment

CVE Program Container

Additional References

References