2018-05-02 15:29:00 2018-06-13 19:13:22

On an F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.1, or 11.2.1-11.6.3.1 system configured in Appliance mode, the TMOS Shell (tmsh) may allow an administrative user to use the dig utility to gain unauthorized access to file system resources.

Vector

NETWORK

Complexity

MEDIUM

Authentication

SINGLE_INSTANCE

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE
F5 Big-IP Access Policy Manager (APM) 11.2.1 F5 Big-IP Access Policy Manager (APM) 11.3.0 F5 Big-ip access policy manager 11.4.0 (not an official CPE) F5 Big-ip access policy manager 11.4.1 (not an official CPE) F5 Big-ip access policy manager 11.5.0 (not an official CPE) F5 Big-IP Access Policy Manager (APM) 11.5.1 F5 Big-ip access policy manager 11.5.2 (not an official CPE) F5 Big-ip access policy manager 11.5.3 (not an official CPE) F5 Big-ip access policy manager 11.5.4 (not an official CPE) F5 Big-ip access policy manager 11.5.5 (not an official CPE) F5 Big-IP Access Policy Manager (APM) 11.6.0 F5 Big-ip access policy manager 11.6.1 (not an official CPE) F5 Big-ip access policy manager 12.1.0 (not an official CPE) F5 Big-ip access policy manager 12.1.1 (not an official CPE) F5 Networks BIGIP Advanced Firewall Manager 11.2.1 F5 Big-ip advanced firewall manager 11.3.0 (not an official CPE) F5 Big-ip advanced firewall manager 11.4.0 (not an official CPE) F5 Big-ip advanced firewall manager 11.4.1 (not an official CPE) F5 Big-ip advanced firewall manager 11.5.0 (not an official CPE) F5 Networks BIGIP Advanced Firewall Manager 11.5.1 F5 Big-ip advanced firewall manager 11.5.2 (not an official CPE) F5 Big-ip advanced firewall manager 11.5.3 (not an official CPE) F5 Big-ip advanced firewall manager 11.5.4 (not an official CPE) F5 Big-ip advanced firewall manager 11.5.5 (not an official CPE) F5 Big-ip advanced firewall manager 11.6.0 (not an official CPE) F5 Big-ip advanced firewall manager 11.6.1 (not an official CPE) F5 Big-ip advanced firewall manager 12.1.0 (not an official CPE) F5 Big-ip advanced firewall manager 12.1.1 (not an official CPE) F5 Networks BIGIP Analytics 11.2.1 F5 Big-ip analytics 11.3.0 (not an official CPE) F5 Big-ip analytics 11.4.0 (not an official CPE) F5 Big-ip analytics 11.4.1 (not an official CPE) F5 Big-ip analytics 11.5.0 (not an official CPE) F5 Networks BIGIP Analytics 11.5.1 F5 Big-ip analytics 11.5.2 (not an official CPE) F5 Big-ip analytics 11.5.3 (not an official CPE) F5 Big-ip analytics 11.5.4 (not an official CPE) F5 Big-ip analytics 11.6.0 (not an official CPE) F5 Big-ip analytics 11.6.1 (not an official CPE) F5 Big-ip analytics 12.1.0 (not an official CPE) F5 Big-ip analytics 12.1.1 (not an official CPE) F5 Big-ip application acceleration manager 11.3.0 (not an official CPE) F5 Networks BIGIP Application Acceleration Manager 11.4.0 F5 Big-ip application acceleration manager 11.4.1 (not an official CPE) F5 Big-ip application acceleration manager 11.5.0 (not an official CPE) F5 Networks BIGIP Application Acceleration Manager 11.5.1 F5 Big-ip application acceleration manager 11.5.2 (not an official CPE) F5 Big-ip application acceleration manager 11.5.3 (not an official CPE) F5 Big-ip application acceleration manager 11.5.4 (not an official CPE) F5 Big-ip application acceleration manager 11.5.5 (not an official CPE) F5 Big-ip application acceleration manager 11.6.0 (not an official CPE) F5 Big-ip application acceleration manager 11.6.1 (not an official CPE) F5 Big-ip application acceleration manager 12.1.0 (not an official CPE) F5 Big-ip application acceleration manager 12.1.1 (not an official CPE) F5 Networks BIG-IP Application Security Manager 11.2.1 F5 Big-ip application security manager 11.3.0 (not an official CPE) F5 Big-ip application security manager 11.4.0 (not an official CPE) F5 Big-ip application security manager 11.4.1 (not an official CPE) F5 Big-ip application security manager 11.5.0 (not an official CPE) F5 Networks BIG-IP Application Security Manager 11.5.1 F5 Big-ip application security manager 11.5.2 (not an official CPE) F5 Big-ip application security manager 11.5.3 (not an official CPE) F5 Big-ip application security manager 11.5.4 (not an official CPE) F5 Big-ip application security manager 11.5.5 (not an official CPE) F5 Big-ip application security manager 11.6.0 (not an official CPE) F5 Big-ip application security manager 11.6.1 (not an official CPE) F5 Big-ip application security manager 12.1.0 (not an official CPE) F5 Big-ip application security manager 12.1.1 (not an official CPE) F5 Big-ip domain name system 11.5.1 (not an official CPE) F5 Big-ip domain name system 11.5.2 (not an official CPE) F5 Big-ip domain name system 11.5.3 (not an official CPE) F5 Big-ip domain name system 11.5.4 (not an official CPE) F5 Big-ip domain name system 11.6.0 (not an official CPE) F5 Big-ip domain name system 11.6.1 (not an official CPE) F5 Big-ip domain name system 12.1.0 (not an official CPE) F5 Big-ip domain name system 12.1.1 (not an official CPE) F5 BIG-IP IP Edge Gateway 11.2.1 F5 BIG-IP IP Edge Gateway 11.3.0 F5 BIG-IP IP Edge Gateway 11.5.0 F5 Networks BIGIP Global Traffic Manager 11.2.1 F5 Big-ip global traffic manager 11.3.0 (not an official CPE) F5 Big-ip global traffic manager 11.4.0 (not an official CPE) F5 Big-ip global traffic manager 11.4.1 (not an official CPE) F5 Big-ip global traffic manager 11.5.0 (not an official CPE) F5 Networks BIGIP Global Traffic Manager 11.5.1 F5 Big-ip global traffic manager 11.5.2 (not an official CPE) F5 Big-ip global traffic manager 11.5.3 (not an official CPE) F5 Big-ip global traffic manager 11.5.4 (not an official CPE) F5 Big-ip global traffic manager 11.6.0 (not an official CPE) F5 Big-ip global traffic manager 11.6.1 (not an official CPE) F5 Big-ip global traffic manager 12.1.0 (not an official CPE) F5 Big-ip global traffic manager 12.1.1 (not an official CPE) F5 Big-ip global traffic manager 12.1.2 (not an official CPE) F5 Networks BIGIP Link Controller 11.2.1 F5 Big-ip link controller 11.3.0 (not an official CPE) F5 Big-ip link controller 11.4.0 (not an official CPE) F5 Big-ip link controller 11.4.1 (not an official CPE) F5 Big-ip link controller 11.5.0 (not an official CPE) F5 Networks BIGIP Link Controller 11.5.1 F5 Big-ip link controller 11.5.2 (not an official CPE) F5 Big-ip link controller 11.5.3 (not an official CPE) F5 Big-ip link controller 11.5.4 (not an official CPE) F5 Big-ip link controller 11.5.5 (not an official CPE) F5 Big-ip link controller 11.6.0 (not an official CPE) F5 Big-ip link controller 11.6.1 (not an official CPE) F5 Big-ip link controller 12.1.0 (not an official CPE) F5 Big-ip link controller 12.1.1 (not an official CPE) F5 Networks BIGIP Local Traffic Manager (LTM) 11.2.1 F5 Big-ip local traffic manager 11.3.0 (not an official CPE) F5 Big-ip local traffic manager 11.4.0 (not an official CPE) F5 Big-ip local traffic manager 11.4.1 (not an official CPE) F5 Big-ip local traffic manager 11.5.0 (not an official CPE) F5 Networks BIGIP Local Traffic Manager (LTM) 11.5.1 F5 Big-ip local traffic manager 11.5.2 (not an official CPE) F5 Big-ip local traffic manager 11.5.3 (not an official CPE) F5 Big-ip local traffic manager 11.5.4 (not an official CPE) F5 Big-ip local traffic manager 11.5.5 (not an official CPE) F5 Big-ip local traffic manager 11.6.0 (not an official CPE) F5 Big-ip local traffic manager 11.6.1 (not an official CPE) F5 Big-ip local traffic manager 12.1.0 (not an official CPE) F5 Big-ip local traffic manager 12.1.1 (not an official CPE) F5 Networks BIGIP Policy Enforcement Manager 11.3.0 F5 Big-ip policy enforcement manager 11.4.0 (not an official CPE) F5 Big-ip policy enforcement manager 11.4.1 (not an official CPE) F5 Big-ip policy enforcement manager 11.5.0 (not an official CPE) F5 Networks BIGIP Policy Enforcement Manager 11.5.1 F5 Big-ip policy enforcement manager 11.5.2 (not an official CPE) F5 Networks BIG-IP Policy Enforcement Manager 11.5.3 F5 Big-ip policy enforcement manager 11.5.4 (not an official CPE) F5 Big-ip policy enforcement manager 11.5.5 (not an official CPE) F5 Big-ip policy enforcement manager 11.6.0 (not an official CPE) F5 Big-ip policy enforcement manager 11.6.1 (not an official CPE) F5 Big-ip policy enforcement manager 11.6.2 (not an official CPE) F5 Big-ip policy enforcement manager 12.1.0 (not an official CPE) F5 Big-ip policy enforcement manager 12.1.1 (not an official CPE) F5 Big-ip policy enforcement manager 12.1.3 (not an official CPE) F5 Networks BIGIP WebAccelerator 11.2.1 F5 Networks BIGIP WebAccelerator 11.3.0 F5 Big-ip websafe 11.5.0 (not an official CPE) F5 Big-ip websafe 11.5.1 (not an official CPE) F5 Big-ip websafe 11.5.2 (not an official CPE) F5 Big-ip websafe 11.5.3 (not an official CPE) F5 Big-ip websafe 11.5.4 (not an official CPE) F5 Big-ip websafe 11.6.0 (not an official CPE) F5 Big-ip websafe 11.6.1 (not an official CPE) F5 Big-ip websafe 12.1.0 (not an official CPE)