CVE-2018-5511

CVE Database · CVE-2018-5511

CVE-2018-5511

· N/AModified

CVSS v3.1

N/A

EPSS

14.76%

Published

Apr 13, 2018

Modified

Nov 21, 2024

Public PoC / Exploit (2)

All weaponized →

Exploit-DBVMware Workstation 14.1.5 / VMware Player 15.0.2 - Host VMX Process Impersonation Hijack Privilege Escalation TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

On F5 BIG-IP 13.1.0-13.1.0.3 or 13.0.0, when authenticated administrative users execute commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced.

Weaknesses (CWE)

CWE-470

Affected Products (30)

f5 · big-ip_local_traffic_managervulnerable

f5 · big-ip_application_acceleration_managervulnerable

f5 · big-ip_advanced_firewall_managervulnerable

f5 · big-ip_analyticsvulnerable

f5 · big-ip_access_policy_managervulnerable