F5 Networks BIG-IP : BIG-IP APM client for Linux and macOS vulnerability (K52171282)
Medium Nessus Plugin ID 118676
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionThe svpn component of the F5 BIG-IP APM client prior to version 7.1.7 for Linux and Mac OS X runs as a privileged process and can allow an unprivileged user to assume super-user privileges on the local client host. A malicious local unprivileged user may gain knowledge of sensitive information, manipulate certain data, or disrupt service.
A malicious, local, unprivileged user may gain knowledge of sensitive information, manipulate certain data, or disrupt service.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K52171282.