High severity7.0NVD Advisory· Published Dec 6, 2018· Updated Jun 17, 2026
CVE-2018-15332
CVE-2018-15332
Description
The svpn component of the F5 BIG-IP APM client prior to version 7.1.7.2 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host in a race condition.
Affected products
2- Range: <7.1.7.2
- F5 Networks, Inc./BIG-IP (APM), BIG-IP APM Clients, BIG-IP Edge Clientv5Range: APM Client 7.1.5 - 7.1.7.1, Edge Client 7101 - 7150
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/106135nvdThird Party AdvisoryVDB Entry
- support.f5.com/csp/article/K12130880nvdVendor Advisory
News mentions
0No linked articles in our index yet.