Spring Security in combination with Spring Framework versions prior to 5.0.6 contains an authorization bypass when using method security. An unauthorized malicious user can gain unauthorized access to methods that should be restricted. (CVE-2018-1258)
Impact
Traffix SDC
When the vulnerability is exploited, an attacker may gain access to the restricted method.
BIG-IP, BIG-IQ, F5 iWorkflow, Enterprise Manager, ARX, and LineRate
There is no impact; these F5 products are not affected by this vulnerability.