The iControl API in F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.0 before 11.5.3 HF2 and 11.6.0 before 11.6.0 HF6, BIG-IP AAM 11.4.0 before 11.5.3 HF2 and 11.6.0 before. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 75.2%.
Privilege Escalation
Big Iq Security
Big Ip Application Acceleration Manager
Big Ip Wan Optimization Manager
Big Iq Adc
+14
NVD
Exploit-DB
CVSS 2.0
9.0
EPSS
75.2%
Threat
5.6