F5 Networks BIG-IP : TMUI vulnerability (K30500703)
Medium Nessus Plugin ID 118651
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionWhen authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced. (CVE-2018-5511)
This vulnerability allowsa privilege escalation for authenticated administrative users.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K30500703.