CVE-2018-5529

Summary

The svpn component of the F5 BIG-IP APM client prior to version 7.1.7 for Linux and Mac OS X runs as a privileged process and can allow an unprivileged user to assume super-user privileges on the local client host. A malicious local unprivileged user may gain knowledge of sensitive information, manipulate certain data, or disrupt service.

Affected Software

VendorProductVersion RangeStatus
F5 Networks, Inc.BIG-IP APM client for Linux and Mac OSXprior to version 7.1.7affected

Weaknesses

  • Privilege Escalation

ADP Enrichment

CVE Program Container

Additional References

References