Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The svpn and policyserver components of the F5 BIG-IP APM client prior to version 7.1.7.1 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host. A malicious local unprivileged user may gain knowledge of sensitive information, manipulate certain data, or assume super-user privileges on the local client host.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
F5 BIG-IP APM client svpn和policyserver组件安全漏洞
Vulnerability Description
F5 BIG-IP APM client是美国F5公司的一套访问和安全解决方案中的客户端软件。该软件主要提供统一访问关键业务应用和网络的功能。svpn是其中的一个VPN组件。policyserver是其中的一个策略服务器。 基于Linux和macOS平台的F5 BIG-IP APM client 7.1.7.1之前版本中的svpn和policyserver组件存在安全漏洞。本地攻击者可利用该漏洞获取敏感信息,操纵数据或获取超级用户权限。
CVSS Information
N/A
Vulnerability Type
N/A