VYPR
High severity7.0NVD Advisory· Published Dec 6, 2018· Updated Jun 17, 2026

CVE-2018-15332

CVE-2018-15332

Description

The svpn component of the F5 BIG-IP APM client prior to version 7.1.7.2 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host in a race condition.

Affected products

2
  • Range: <7.1.7.2
  • F5 Networks, Inc./BIG-IP (APM), BIG-IP APM Clients, BIG-IP Edge Clientv5
    Range: APM Client 7.1.5 - 7.1.7.1, Edge Client 7101 - 7150

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.