CVE-2018-5546

Name of the Vulnerable Software and Affected Versions F5 BIG-IP APM client versions prior to 7.1.7.1 for Linux and macOS

Description The issue allows an unprivileged user to gain ownership of files owned by root on the local client host, potentially leading to the disclosure of sensitive information, data manipulation, or assumption of super-user privileges. This is due to the svpn and policyserver components running as a privileged process.

Recommendations For F5 BIG-IP APM client versions prior to 7.1.7.1 for Linux and macOS, update to version 7.1.7.1 or later to resolve the issue.