← Back to CVE List

CVE-2019-19151

Published: 2019-12-23T19:15Z
Last Modified: 2024-11-21T04:34Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
On BIG-IP versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IQ versions 7.0.0, 6.0.0-6.1.0, and 5.0.0-5.4.0, iWorkflow version 2.3.0, and Enterprise Manager version 3.1.1, authenticated users granted TMOS Shell (tmsh) privileges are able access objects on the file system which would normally be disallowed by tmsh restrictions. This allows for authenticated, low privileged attackers to access objects on the file system which would not normally be allowed. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt