Lucene search

[email protected]CVE-2018-5509

HistoryMar 22, 2018 - 6:29 p.m.

CVE-2018-5509

2018-03-2218:29:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2018-5509

f5 big-ip

tmm

dos

nvd

security vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

62.3%

JSON

On F5 BIG-IP versions 13.0.0 or 12.1.0 - 12.1.3.1, when a specifically configured virtual server receives traffic of an undisclosed nature, TMM will crash and take the configured failover action, potentially causing a denial of service. The configuration which exposes this issue is not common and in general does not work when enabled in previous versions of BIG-IP. Starting in 12.1.0, BIG-IP will crash if the configuration which exposes this issue is enabled and the virtual server receives non TCP traffic. With the fix of this issue, additional configuration validation logic has been added to prevent this configuration from being applied to a virtual server. There is only data plane exposure to this issue with a non-standard configuration. There is no control plane exposure.

Affected configurations

NVD

Node

f5big-ip_access_policy_managerRange12.1.0–12.1.3.2

f5big-ip_access_policy_managerRange13.0.0–13.1.0.4

f5big-ip_advanced_firewall_managerRange12.1.0–12.1.3.2

f5big-ip_advanced_firewall_managerRange13.0.0–13.1.0.4

f5big-ip_application_acceleration_managerRange12.1.0–12.1.3.2

f5big-ip_application_acceleration_managerRange13.0.0–13.1.0.4

f5big-ip_application_security_managerRange12.1.0–12.3.1.2

f5big-ip_application_security_managerRange13.0.0–13.1.0.4

f5big-ip_link_controllerRange12.1.0–12.1.3.2

f5big-ip_link_controllerRange13.0.0–13.1.0.4

f5big-ip_local_traffic_managerRange12.1.0–12.1.3.2

f5big-ip_local_traffic_managerRange13.0.0–13.1.0.4

f5big-ip_policy_enforcement_managerRange12.1.0–12.1.3.2

f5big-ip_policy_enforcement_managerRange13.0.0–13.1.0.4

f5big-ip_websafeMatch1.0.0

CPENameOperatorVersion
f5:big-ip_access_policy_managerf5 big-ip access policy managerlt12.1.3.2
f5:big-ip_access_policy_managerf5 big-ip access policy managerlt13.1.0.4
f5:big-ip_advanced_firewall_managerf5 big-ip advanced firewall managerlt12.1.3.2
f5:big-ip_advanced_firewall_managerf5 big-ip advanced firewall managerlt13.1.0.4
f5:big-ip_application_acceleration_managerf5 big-ip application acceleration managerlt12.1.3.2
f5:big-ip_application_acceleration_managerf5 big-ip application acceleration managerlt13.1.0.4
f5:big-ip_application_security_managerf5 big-ip application security managerlt12.3.1.2
f5:big-ip_application_security_managerf5 big-ip application security managerlt13.1.0.4
f5:big-ip_link_controllerf5 big-ip link controllerlt12.1.3.2
f5:big-ip_link_controllerf5 big-ip link controllerlt13.1.0.4

CPE	Name	Operator	Version
f5:big-ip_access_policy_manager	f5 big-ip access policy manager	lt	12.1.3.2
f5:big-ip_access_policy_manager	f5 big-ip access policy manager	lt	13.1.0.4
f5:big-ip_advanced_firewall_manager	f5 big-ip advanced firewall manager	lt	12.1.3.2
f5:big-ip_advanced_firewall_manager	f5 big-ip advanced firewall manager	lt	13.1.0.4
f5:big-ip_application_acceleration_manager	f5 big-ip application acceleration manager	lt	12.1.3.2
f5:big-ip_application_acceleration_manager	f5 big-ip application acceleration manager	lt	13.1.0.4
f5:big-ip_application_security_manager	f5 big-ip application security manager	lt	12.3.1.2
f5:big-ip_application_security_manager	f5 big-ip application security manager	lt	13.1.0.4
f5:big-ip_link_controller	f5 big-ip link controller	lt	12.1.3.2
f5:big-ip_link_controller	f5 big-ip link controller	lt	13.1.0.4

Rows per page:

1-10 of 151

CNA Affected

[
  {
    "product": "BIG-IP (LTM, AAM, AFM, APM, ASM, Link Controller, PEM, WebSafe)",
    "vendor": "F5 Networks, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "13.0.0"
      },
      {
        "status": "affected",
        "version": "12.1.0 - 12.1.3.1"
      }
    ]
  }
]

References

www.securityfocus.com/bid/103504

www.securitytracker.com/id/1040562

support.f5.com/csp/article/K49440608

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

62.3%

JSON

Related for CVE-2018-5509

nessus1 f51 cvelist1 nvd1 prion1