Primary

Context

BIG-IP Scripted Monitors Vulnerability Allowing Privilege Escalation

Vulnerability

A vulnerability in BIG-IP scripted monitors could enable an authenticated attacker with Resource Administrator or Administrator role to execute arbitrary system commands with elevated privileges. In appliance mode deployments, this exploitation could allow crossing of a security boundary. The issue is not present in versions that have reached End of Technical Support (EoTS).

Impact

Exploitation could lead to unauthorized execution of commands with higher privileges, potentially allowing file creation or deletion through the BIG-IP management port or self IP addresses. In appliance mode, this vulnerability could bypass security measures, enabling an attacker to execute commands with elevated privileges.

Remediation

Users can upgrade to BIG-IP versions 17.5.1.6, 17.1.3.2 or 21.0.0.2, all of which include the necessary fix. For more information about managing BIG-IP product hotfixes, refer to the MyF5 article K13123.

Added: May 13, 2026, 6:42 PM

Updated: May 13, 2026, 6:42 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.4

remediation

0.0

relevance

8.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.4

remediation

0.0

relevance

8.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

BIG-IP Scripted Monitors Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

F5 BIG-IP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating