CVE-2015-3628

🗓️ 07 Dec 2015 20:59:04Reported by [email protected]Type

The iControl API in F5 BIG-IP products allows remote authenticated users with "Resource Administrator" role to gain privileges

Reporter	Title	Published	Views	Family All 14
0day.today	F5 iControl iCall::Script Root Command Execution Exploit	19 Nov 201500:00	–	zdt
Circl	CVE-2015-3628	19 Nov 201500:00	–	circl
CNVD	Multiple F5 Products Privilege Acquisition Vulnerabilities	8 Dec 201500:00	–	cnvd
Check Point Advisories	F5 Multiple Products iControl iCall Script Privilege Escalation (CVE-2015-3628)	19 Jan 201700:00	–	checkpoint_advisories
CVE	CVE-2015-3628	7 Dec 201520:00	–	cve
Cvelist	CVE-2015-3628	7 Dec 201520:00	–	cvelist
Exploit DB	F5 iControl - 'iCall::Script' Root Command Execution (Metasploit)	19 Nov 201500:00	–	exploitdb
F5 Networks	K16728: iCall privilege escalation vulnerability CVE-2015-3628	21 Feb 202318:52	–	f5
F5 Networks	SOL16728 - iCall privilege escalation vulnerability CVE-2015-3628	9 Sep 201500:00	–	f5
Tenable Nessus	F5 Networks BIG-IP : iCall privilege escalation vulnerability (K16728)	4 Sep 201500:00	–	nessus

NVD

Node

f5 big-iq_securityMatch4.0.0

f5 big-iq_securityMatch4.1.0

f5 big-iq_securityMatch4.2.0

f5 big-iq_securityMatch4.3.0

f5 big-iq_securityMatch4.4.0

f5 big-iq_securityMatch4.5.0

Node

f5 big-ip_application_acceleration_managerMatch11.4.0

f5 big-ip_application_acceleration_managerMatch11.4.1

f5 big-ip_application_acceleration_managerMatch11.5.0

f5 big-ip_application_acceleration_managerMatch11.5.1

f5 big-ip_application_acceleration_managerMatch11.5.2

f5 big-ip_application_acceleration_managerMatch11.5.3

f5 big-ip_application_acceleration_managerMatch11.6.0

Node

f5 big-ip_wan_optimization_managerMatch11.3.0

Node

f5 big-iq_adcMatch4.5.0

Node

f5 big-ip_application_security_managerMatch11.3.0

f5 big-ip_application_security_managerMatch11.4.0

f5 big-ip_application_security_managerMatch11.4.1

f5 big-ip_application_security_managerMatch11.5.0

f5 big-ip_application_security_managerMatch11.5.1

f5 big-ip_application_security_managerMatch11.5.2

f5 big-ip_application_security_managerMatch11.5.3

f5 big-ip_application_security_managerMatch11.6.0

Node

f5 big-ip_global_traffic_managerMatch11.3.0

f5 big-ip_global_traffic_managerMatch11.4.0

f5 big-ip_global_traffic_managerMatch11.4.1

f5 big-ip_global_traffic_managerMatch11.5.0

f5 big-ip_global_traffic_managerMatch11.5.1

f5 big-ip_global_traffic_managerMatch11.5.2

f5 big-ip_global_traffic_managerMatch11.5.3

f5 big-ip_global_traffic_managerMatch11.6.0

Node

f5 big-iq_deviceMatch4.2.0

f5 big-iq_deviceMatch4.3.0

f5 big-iq_deviceMatch4.4.0

f5 big-iq_deviceMatch4.5.0

Node

f5 big-ip_edge_gatewayMatch11.3.0

Node

f5 big-ip_local_traffic_managerMatch11.3.0

f5 big-ip_local_traffic_managerMatch11.4.0

f5 big-ip_local_traffic_managerMatch11.4.1

f5 big-ip_local_traffic_managerMatch11.5.0

f5 big-ip_local_traffic_managerMatch11.5.1

f5 big-ip_local_traffic_managerMatch11.5.2

f5 big-ip_local_traffic_managerMatch11.5.3

f5 big-ip_local_traffic_managerMatch11.6.0

Node

f5 big-ip_access_policy_managerMatch11.3.0

f5 big-ip_access_policy_managerMatch11.4.0

f5 big-ip_access_policy_managerMatch11.4.1

f5 big-ip_access_policy_managerMatch11.5.0

f5 big-ip_access_policy_managerMatch11.5.1

f5 big-ip_access_policy_managerMatch11.5.2

f5 big-ip_access_policy_managerMatch11.5.3

f5 big-ip_access_policy_managerMatch11.6.0

Node

f5 big-ip_policy_enforcement_managerMatch11.3.0

f5 big-ip_policy_enforcement_managerMatch11.4.0

f5 big-ip_policy_enforcement_managerMatch11.4.1

f5 big-ip_policy_enforcement_managerMatch11.5.0

f5 big-ip_policy_enforcement_managerMatch11.5.1

f5 big-ip_policy_enforcement_managerMatch11.5.2

f5 big-ip_policy_enforcement_managerMatch11.5.3

f5 big-ip_policy_enforcement_managerMatch11.6.0

Node

f5 big-iq_cloudMatch4.0.0

f5 big-iq_cloudMatch4.1.0

f5 big-iq_cloudMatch4.2.0

f5 big-iq_cloudMatch4.3.0

f5 big-iq_cloudMatch4.4.0

f5 big-iq_cloudMatch4.5.0

Node

f5 big-ip_analyticsMatch11.3.0

f5 big-ip_analyticsMatch11.4.0

f5 big-ip_analyticsMatch11.4.1

f5 big-ip_analyticsMatch11.5.0

f5 big-ip_analyticsMatch11.5.1

f5 big-ip_analyticsMatch11.5.2

f5 big-ip_analyticsMatch11.5.3

f5 big-ip_analyticsMatch11.6.0

Node

f5 big-ip_protocol_security_moduleMatch11.3.0

f5 big-ip_protocol_security_moduleMatch11.4.0

f5 big-ip_protocol_security_moduleMatch11.4.1

Node

f5 big-ip_webacceleratorMatch11.3.0

Node

f5 big-ip_link_controllerMatch11.3.0

f5 big-ip_link_controllerMatch11.4.0

f5 big-ip_link_controllerMatch11.4.1

f5 big-ip_link_controllerMatch11.5.0

f5 big-ip_link_controllerMatch11.5.1

f5 big-ip_link_controllerMatch11.5.2

f5 big-ip_link_controllerMatch11.5.3

f5 big-ip_link_controllerMatch11.6.0

Node

f5 big-ip_enterprise_managerMatch3.0.0

f5 big-ip_enterprise_managerMatch3.1.0

f5 big-ip_enterprise_managerMatch3.1.1

Node

f5 big-ip_advanced_firewall_managerMatch11.3.0

f5 big-ip_advanced_firewall_managerMatch11.4.0

f5 big-ip_advanced_firewall_managerMatch11.4.1

f5 big-ip_advanced_firewall_managerMatch11.5.0

f5 big-ip_advanced_firewall_managerMatch11.5.1

f5 big-ip_advanced_firewall_managerMatch11.5.2

f5 big-ip_advanced_firewall_managerMatch11.5.3

f5 big-ip_advanced_firewall_managerMatch11.6.0

Source	Link
rapid7	www.rapid7.com/db/modules/exploit/linux/http/f5_icall_cmd
exploit-db	www.exploit-db.com/exploits/38764/
securitytracker	www.securitytracker.com/id/1034306
support	www.support.f5.com/kb/en-us/solutions/public/16000/700/sol16728.html
packetstormsecurity	www.packetstormsecurity.com/files/134434/F5-iControl-iCall-Script-Root-Command-Execution.html
gdssecurity	www.gdssecurity.squarespace.com/labs/2015/9/8/f5-icallscript-privilege-escalation-cve-2015-3628.html
securitytracker	www.securitytracker.com/id/1034307

06 May 2026 22:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 29

EPSS0.7521

CWE-264