Command Execution Vulnerability in BIG-IP Configuration Utility

Command Execution Vulnerability in BIG-IP Configuration Utility

CVE-2019-6597 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

In BIG-IP 13.0.0-13.1.1.1, 12.1.0-12.1.3.7, 11.6.1-11.6.3.2, or 11.5.1-11.5.8 or Enterprise Manager 3.1.1, when authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced.

Learn more about our User Device Pen Test.