High severity7.2NVD Advisory· Published Jun 1, 2018· Updated Jun 17, 2026
CVE-2018-5523
CVE-2018-5523
Description
On F5 BIG-IP 13.1.0-13.1.0.3, 13.0.0, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 and Enterprise Manager 3.1.1, when authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced.
Affected products
3- F5, Inc./Big Ip (ltm, Aam, Afm, Analytics, Apm, Asm, DNS, Edge Gateway, Fps, Gtm, Link Controller, Pem, Webaccelerator)cpe-rescueRange: 13.1.0-13.1.0.3, 13.0.0, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, 11.2.1
- F5 Networks, Inc./Enterprise Managerv5Range: 3.1.1
Patches
Vulnerability mechanics
References
3- www.securitytracker.com/id/1041022nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1041023nvdThird Party AdvisoryVDB Entry
- support.f5.com/csp/article/K50254952nvdVendor Advisory
News mentions
0No linked articles in our index yet.