April 24, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – CVE-2019-9810 & CVE-2019-9813 – Firefox System Access Vulnerabilities
April 2, 2019Rewterz Threat Alert – Indicators of Compromise – New Contract Themed Malspam Phishing Campaign
April 2, 2019Rewterz Threat Advisory – CVE-2019-9810 & CVE-2019-9813 – Firefox System Access Vulnerabilities
April 2, 2019Rewterz Threat Alert – Indicators of Compromise – New Contract Themed Malspam Phishing Campaign
April 2, 2019
Analysis Summary
CVE-2018-5546
The svpn and policy server components of the F5 BIG-IP APM client prior to version 7.1.7.1 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host. A malicious local unprivileged user may gain knowledge of sensitive information, manipulate certain data, or assume super-user privileges on the local client host.
Impact
Security Bypass
Affected Vendors
F5
Affected Products
- BIG-IP Edge Client for Mac OS X
- BIG-IP Edge Client for Linux
- F5 TMOS 11.x
- F5 BIG-IP Access Policy Manager (APM) 11.x
- F5 BIG-IP Access Policy Manager (APM) 12.x
- F5 BIG-IP Access Policy Manager (APM) 13.x
- F5 TMOS 12.x
Remediation
Update or upgrade to a fixed version.
BIG-IP APM:
Update to version 11.5.9, 11.6.3.3, 12.1.3.7, or 13.1.1.2.
BIG-IP Edge Client:
Update or upgrade to version 7171 or update to a fixed version of BIG-IP APM
BIG-IP APM Clients:
Update to version 7.1.7.1
