CVE-2018-5546

The svpn and policyserver components of the F5 BIG-IP APM client prior to version 7.1.7.1 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host. A malicious local unprivileged user may gain knowledge of sensitive information, manipulate certain data, or assume super-user privileges on the local client host.

CVSS v3 7.8 HIGH
CVSS v2.0 7.2 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.2^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.securitytracker.com/id/1041510	Broken Link
https://github.com/mirchr/security-research/blob/master/vulnerabilities/F5/CVE-2018-5529.txt	Exploit Third Party Advisory
https://support.f5.com/csp/article/K54431371	Vendor Advisory
http://www.securitytracker.com/id/1041510	Broken Link
https://github.com/mirchr/security-research/blob/master/vulnerabilities/F5/CVE-2018-5529.txt	Exploit Third Party Advisory
https://support.f5.com/csp/article/K54431371	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:f5:big-ip_access_policy_manager_client:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*

Configuration 2 (hide)

AND

cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*

History

21 Nov 2024, 04:09

Type	Values Removed	Values Added
References	~~() http://www.securitytracker.com/id/1041510 - Broken Link~~	() http://www.securitytracker.com/id/1041510 - Broken Link
References	~~() https://github.com/mirchr/security-research/blob/master/vulnerabilities/F5/CVE-2018-5529.txt - Exploit, Third Party Advisory~~	() https://github.com/mirchr/security-research/blob/master/vulnerabilities/F5/CVE-2018-5529.txt - Exploit, Third Party Advisory
References	~~() https://support.f5.com/csp/article/K54431371 - Vendor Advisory~~	() https://support.f5.com/csp/article/K54431371 - Vendor Advisory

18 Apr 2022, 17:32

Type	Values Removed	Values Added
References	~~(MISC) https://github.com/mirchr/security-research/blob/master/vulnerabilities/F5/CVE-2018-5529.txt -~~	(MISC) https://github.com/mirchr/security-research/blob/master/vulnerabilities/F5/CVE-2018-5529.txt - Exploit, Third Party Advisory
References	~~(SECTRACK) http://www.securitytracker.com/id/1041510 - Third Party Advisory, VDB Entry~~	(SECTRACK) http://www.securitytracker.com/id/1041510 - Broken Link

08 Sep 2021, 17:21

Type	Values Removed	Values Added
CPE	cpe:2.3:o:apple:mac_os:-:::::::*	cpe:2.3:o:apple:macos:-:::::::*

Information

Published : 2018-08-17 12:29

Updated : 2024-11-21 04:09

NVD link : CVE-2018-5546

Mitre link : CVE-2018-5546

CVE.ORG link : CVE-2018-5546

JSON object : View

Products Affected

apple

macos

big-ip_access_policy_manager
big-ip_access_policy_manager_client

linux

linux_kernel

CWE

CWE-732

Incorrect Permission Assignment for Critical Resource

7.8 /10