CVE-2015-8022

high-risk

Published 2016-08-19

The Configuration utility in F5 BIG-IP LTM, Analytics, APM, ASM, GTM, and Link Controller 11.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF10, 11.5.x before 11.5.4, and 11.6.x before 11.6.1; BIG-IP AAM 11.4.x before 11.4.1 HF10, 11.5.x before 11.5.4, and 11.6.x before 11.6.1; BIG-IP AFM and PEM 11.3.x, 11.4.x before 11.4.1 HF10, 11.5.x before 11.5.4, and 11.6.x before 11.6.1; BIG-IP Edge Gateway, WebAccelerator, and WOM 11.x before 11.2.1 HF16 and 11.3.0; and BIG-IP PSM 11.x before 11.2.1 HF16, 11.3.x, and 11.4.x before 11.4.1 HF10 allows remote authenticated users with certain permissions to gain privileges by leveraging an Access Policy Manager customization configuration section that allows file uploads.

Do I need to act?

0.54% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / HIGH complexity

Affected Products (20)

Big-Ip Global Traffic Manager

Big-Ip Local Traffic Manager

Big-Ip Webaccelerator

Big-Ip Policy Enforcement Manager

Affected Vendors

References (4)

Third Party Advisory http://www.securitytracker.com/id/1036627

Vendor Advisory https://support.f5.com/kb/en-us/solutions/public/k/12/sol12401251.html

Third Party Advisory http://www.securitytracker.com/id/1036627

Vendor Advisory https://support.f5.com/kb/en-us/solutions/public/k/12/sol12401251.html

/ 100

high-risk

Severity 22/34 · High

Exploitability 2/34 · Minimal

Exposure 31/34 · Critical