CVE-2018-5540 vulnerability in F5 Networks Products
Published on July 19, 2018

On F5 BIG-IP 13.0.0-13.0.1, 12.1.0-12.1.3.3, 11.6.0-11.6.3.1, or 11.5.1-11.5.6, Enterprise Manager 3.1.1, BIG-IQ Centralized Management 5.0.0-5.1.0, BIG-IQ Cloud and Orchestration 1.0.0, or F5 iWorkflow 2.1.0-2.3.0 the big3d process does not irrevocably minimize group privileges at start up.

NVD

Products Associated with CVE-2018-5540

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-5540 are published in these products:

F5 Networks Big Ip Domain Name System

F5 Networks Big Ip Global Traffic Manager

F5 Networks Big Iq Centralized Management

F5 Networks Big Iq Cloud And Orchestration

F5 Networks Enterprise Manager

F5 Networks F5 Iworkflow

Affected Versions

F5 Networks, Inc. BIG-IP (DNS, GTM):

Version 13.0.0-13.0.1 is affected.
Version 12.1.0-12.1.3.3 is affected.
Version 11.6.0-11.6.3.1 is affected.
Version 11.5.1-11.5.6 is affected.

F5 Networks, Inc. Enterprise Manager:

Version 3.1.1 is affected.

F5 Networks, Inc. BIG-IQ Centralized Management:

Version 5.0.0-5.1.0 is affected.

F5 Networks, Inc. BIG-IQ Cloud and Orchestration:

Version 1.0.0 is affected.

F5 Networks, Inc. F5 iWorkflow:

Version 2.1.0-2.3.0 is affected.

Exploit Probability

EPSS

0.12%

Percentile

31.77%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-5540 vulnerability in F5 Networks ProductsPublished on July 19, 2018

Products Associated with CVE-2018-5540

Affected Versions

Exploit Probability

CVE-2018-5540 vulnerability in F5 Networks Products
Published on July 19, 2018