Lucene search
F5F5:K02043709HistoryApr 30, 2018 - 12:00 a.m.
K02043709 : Appliance mode tmsh access vulnerability CVE-2018-5520
2018-04-3000:00:00
my.f5.com
22
Security Advisory Description
On a BIG-IP system configured in Appliance mode, the TMOS Shell (tmsh) may allow an administrative user to use the dig utility to gain unauthorized access to file system resources. (CVE-2018-5520)
Note: Appliance mode is designed to meet the needs of customers in especially sensitive sectors by limiting the BIG-IP system administrative access to match that of a typical network appliance and not a multi-user UNIX device. When a BIG-IP system is configured in Appliance mode, the Advanced Shell (bash) access to the file system is restricted. For information about Appliance mode, refer to K12815: Overview of Appliance mode.
Impact
This vulnerability allows unauthorized disclosure of information.
Related
cvelist
cvelist
CVE-2018-5520
2018-05-02 13:00:00
prion
prion
Design/Logic Flaw
2018-05-02 13:29:00
nessus
nessus
F5 Networks BIG-IP : Appliance mode tmsh access vulnerability (K02043709)
2018-11-02 00:00:00
nvd
nvd
CVE-2018-5520
2018-05-02 13:29:00
cve
cve
CVE-2018-5520
2018-05-02 13:29:00