An authenticated, high-privileged attacker with no bash access may be able to access Certificate and Key files using Secure Copy (SCP) protocol from a remote system. (CVE-2022-26340)
Impact
This vulnerability may allow an authenticated, high-privileged attacker who has remote access to the BIG-IP management IP or self IP addresses to access Certificate and Key files.