F5 Networks BIG-IP : TMUI vulnerability (K30500703)
Medium Nessus Plugin ID 118651
Synopsis
The remote device is missing a vendor-supplied security patch.
Description
When authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced. (CVE-2018-5511)
Impact
This vulnerability allowsa privilege escalation for authenticated administrative users.
Solution
Upgrade to one of the non-vulnerable versions listed in the F5 Solution K30500703.