Arbitrary File Overwrite Vulnerability in BIG-IP Appliance Mode

Arbitrary File Overwrite Vulnerability in BIG-IP Appliance Mode

CVE-2019-6614 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, internal methods used to prevent arbitrary file overwrites in Appliance Mode were not fully effective. An authenticated attacker with a high privilege level may be able to bypass protections implemented in appliance mode to overwrite arbitrary system files.

Learn more about our Internal Network Penetration Testing.