A local file vulnerability exists in the BIG-IP Configuration utility that exposes files containing F5-provided data only, and do not include configuration data, proxied traffic, or other potentially sensitive customer data. (CVE-2018-5525)
Impact
Authenticated users may be able to retrieve files local to the BIG-IP system using the Configuration utility.