K00265182: Custom monitor privilege escalation vulnerability CVE-2016-5020

Security Advisory Description F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to modify the account configuration of users with the Resource Administration role and gain privilege via a crafted external Extended Application Verification EAV monitor script. CVE-2016-5020 Impact An...

CVE-2016-5020

F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to modify the account configuration of users with the Resource Administration role and gain privilege via a crafted external Extended Application Verification EAV monitor script...

CVE-2016-5020

F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to modify the account configuration of users with the Resource Administration role and gain privilege via a crafted external Extended Application Verification EAV monitor script...

CVE-2016-5020

CVE-2016-5020 affects F5 BIG-IP products (notably BIG-IP LTM, AAM, AFM, and related modules) and is caused by a vulnerability in the use of a crafted external Extended Application Verification (EAV) monitor script that allows a user with the Resource Administrator role to modify account configura...

F5 BIG-IP - Custom monitor privilege escalation vulnerability CVE-2016-5020

A user role assigned the Resource Administrator is capable of a privilege escalation which allows through the use of malicious external EAV monitor scripts to modify user accounts. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and a...

F5 Networks BIG-IP : Custom monitor privilege escalation vulnerability (K00265182)

F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to modify the account configuration of users with the Resource Administration role and gain privilege via a crafted external Extended Application Verification EAV monitor script. CVE-2016-5020 Impact An attacker may be able to use a...