Security Advisory Description
The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating privileges during the installation process. (CVE-2023-43611)
Note: This vulnerability is due to an incomplete fix for CVE-2023-38418.
Impact
An attacker with an ability to run unprivileged arbitrary code on the target macOS client may be able to abuse an in-progress Edge Client installation to gain local privilege escalation on the client macOS system.