K73522927 : BIG-IP Appliance mode vulnerability CVE-2019-6633

2019-07-0100:00:00

my.f5.com

4.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Security Advisory Description

When the BIG-IP system is licensed with Appliance mode, user accounts with Administrator and Resource Administrator roles can bypass Appliance mode restrictions. (CVE-2019-6633)

Impact

This vulnerability allows the attacker to exploit the system with high-level privileges to read and modify the arbitrary files. This behavior is possible only when the BIG-IP system runs in Appliance mode and the user account is configured with the Administrator or Resource Administrator role. The Resource Administrator role requires TMOS Shell (tmsh) access to be vulnerable. Appliance mode is a licensed feature on the BIG-IP product.

CPENameOperatorVersion
big-iq centralized managementeq5.1.0
big-iq centralized managementeq5.2.0
big-iq centralized managementeq5.3.0
big-iq centralized managementeq5.4.0
big-iq centralized managementeq6.0.0
big-iq centralized managementeq6.0.1
big-iq centralized managementeq6.1.0
big-ip afmeq11.5.10
big-ip afmeq11.5.2
big-ip afmeq11.5.3

Name	Operator	Version
big-iq centralized management	eq	5.1.0
big-iq centralized management	eq	5.2.0
big-iq centralized management	eq	5.3.0
big-iq centralized management	eq	5.4.0
big-iq centralized management	eq	6.0.0
big-iq centralized management	eq	6.0.1
big-iq centralized management	eq	6.1.0
big-ip afm	eq	11.5.10
big-ip afm	eq	11.5.2
big-ip afm	eq	11.5.3

Rows per page:

1-10 of 2541