Bug ID 641169: Role permissions for actions on the iRules LX Workspace editor page

Last Modified: Nov 22, 2021

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
13.0.0

Fixed In:
13.0.0 HF1

Opened: Jan 24, 2017

Severity: 4-Minor

Symptoms

Mutable actions (delete, save, etc.) are available to roles with lower privilege than Manager.

Impact

The iRules LX filesystem can be modified by a non-privileged user.

Conditions

Being logged in with a role with lower privileges than Manager allows access to mutable actions.

Workaround

None.

Fix Information

The system now correctly enforce roles on the iRules LX Workspace editor page.

Behavior Change

The system now enforces roles on the iRules LX Workspace editor page, so that users cannot add, delete, or save edits unless they have a role of Manager or higher.

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips