Lucene search

[email protected]CVE-2016-5023

HistoryAug 26, 2016 - 2:59 p.m.

CVE-2016-5023

2016-08-2614:59:00

CWE-284

[email protected]

web.nvd.nist.gov

cve-2016-5023

f5 big-ip

virtual servers

denial of service

tcp profile

nvd

security vulnerability

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

73.8%

JSON

Virtual servers in F5 BIG-IP systems 11.2.1 HF11 through HF15, 11.4.1 HF4 through HF10, 11.5.3 through 11.5.4, 11.6.0 HF5 through HF7, and 12.0.0, when configured with a TCP profile, allow remote attackers to cause a denial of service (Traffic Management Microkernel restart) via crafted network traffic.

CPENameOperatorVersion
f5:big-ip_edge_gatewayf5 big-ip edge gatewayeq11.2.1
f5:big-ip_protocol_security_modulef5 big-ip protocol security moduleeq11.2.1
f5:big-ip_protocol_security_modulef5 big-ip protocol security moduleeq11.4.1
f5:big-ip_analyticsf5 big-ip analyticseq11.4.1
f5:big-ip_analyticsf5 big-ip analyticseq11.6.0
f5:big-ip_analyticsf5 big-ip analyticseq11.2.1
f5:big-ip_analyticsf5 big-ip analyticseq11.5.4
f5:big-ip_analyticsf5 big-ip analyticseq12.0.0
f5:big-ip_analyticsf5 big-ip analyticseq11.5.3
f5:big-ip_application_security_managerf5 big-ip application security managereq11.6.0

CPE	Name	Operator	Version
f5:big-ip_edge_gateway	f5 big-ip edge gateway	eq	11.2.1
f5:big-ip_protocol_security_module	f5 big-ip protocol security module	eq	11.2.1
f5:big-ip_protocol_security_module	f5 big-ip protocol security module	eq	11.4.1
f5:big-ip_analytics	f5 big-ip analytics	eq	11.4.1
f5:big-ip_analytics	f5 big-ip analytics	eq	11.6.0
f5:big-ip_analytics	f5 big-ip analytics	eq	11.2.1
f5:big-ip_analytics	f5 big-ip analytics	eq	11.5.4
f5:big-ip_analytics	f5 big-ip analytics	eq	12.0.0
f5:big-ip_analytics	f5 big-ip analytics	eq	11.5.3
f5:big-ip_application_security_manager	f5 big-ip application security manager	eq	11.6.0

Rows per page:

1-10 of 501

References

www.securityfocus.com/bid/92670

www.securitytracker.com/id/1036624

support.f5.com/kb/en-us/solutions/public/k/19/sol19784568.html

Social References

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

73.8%

JSON

Related for CVE-2016-5023

f53 openvas2 prion1 nessus2 cvelist1