F5 Networks BIG-IP : TMUI vulnerability (K61620494)
Medium Nessus Plugin ID 119820
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionWhen authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced. (CVE-2018-15329)
This vulnerability may allow non-administrative TMUI users to run restricted commands.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K61620494.