Primary

Context

F5 BIG-IP Appliance Mode Bypass Vulnerability in iHealth Command Allowing Shell Access

Vulnerability

A vulnerability in the iHealth utility of the TMOS Shell (tmsh) on F5 BIG-IP systems in Appliance mode may allow an authenticated attacker with resource administrator role privileges to bypass tmsh restrictions and access the Advanced Shell (bash). This exploitation can cross a security boundary on affected systems.

Impact

Exploitation of this vulnerability bypasses Appliance mode security on BIG-IP systems, allowing an authenticated attacker to access the bash shell and potentially cross security boundaries.

Remediation

Users can upgrade to BIG-IP versions 17.5.1.1, 17.1.3, 16.1.6.1, or 15.1.10.8. For more information about F5 hotfixes and point releases, refer to the F5 BIG-IP hotfix and point release matrix.

Added: Oct 15, 2025, 2:18 PM

Updated: Oct 15, 2025, 2:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.8

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.8

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

F5 BIG-IP Appliance Mode Bypass Vulnerability in iHealth Command Allowing Shell Access

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating