Back to search
CVE-2020-5858
Published: Mar 27, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, users with non-administrator roles (for example, Guest or Resource Administrator) with tmsh shell access can execute arbitrary commands with elevated privilege via a crafted tmsh command.
| Vendor | Product | Versions |
|---|---|---|
n/a | BIG-IP, BIG-IQ | affected BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, 11.5.2-11.6.5.1affected BIG-IQ 7.0.0, 6.0.0-6.1.0, 5.2.0-5.4.0 |
References
https://support.f5.com/csp/article/K36814487
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now