Lucene search
F5CVELIST:CVE-2020-5858HistoryMar 27, 2020 - 2:31 p.m.
CVE-2020-5858
2020-03-2714:31:27
f5
www.cve.org
0.0004 Low
EPSS
Percentile
12.7%
On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, users with non-administrator roles (for example, Guest or Resource Administrator) with tmsh shell access can execute arbitrary commands with elevated privilege via a crafted tmsh command.
CNA Affected
[
{
"product": "BIG-IP, BIG-IQ",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, 11.5.2-11.6.5.1"
},
{
"status": "affected",
"version": "BIG-IQ 7.0.0, 6.0.0-6.1.0, 5.2.0-5.4.0"
}
]
}
]References
Related
f5
f5
K36814487 : BIG-IP tmsh vulnerability CVE-2020-5858
2020-03-27 00:00:00
prion
prion
Command injection
2020-03-27 15:15:00
nvd
nvd
CVE-2020-5858
2020-03-27 15:15:12
cve
cve
CVE-2020-5858
2020-03-27 15:15:12
nessus
nessus
F5 Networks BIG-IP : BIG-IP tmsh vulnerability (K36814487)
2020-03-27 00:00:00