K03165684 : vCMP vulnerability CVE-2018-5518

2018-05-0100:00:00

my.f5.com

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Security Advisory Description

Malicious root users with access to a vCMP guest can disrupt service on adjacent vCMP guests running on the same host. Exploiting this vulnerability causes the vcmpd process on the adjacent vCMP guest to restart and produce a core file. This issue is only exploitable on a vCMP guest which is operating in “host-only” or “bridged” mode. vCMP guests which are “isolated” are not impacted by this issue and do not provide mechanism to exploit the vulnerability. Guests which are deployed in Appliance mode may be impacted; however, the exploit is not possible from an Appliance mode guest. To exploit this vulnerability, root access on a guest system deployed as “host-only” or “bridged” mode is required. (CVE-2018-5518)

Impact

This vulnerability allows an authenticated root user on a vCMP guest to disrupt service on adjacent vCMP guests running on the same host.

CPENameOperatorVersion
big-iq centralized managementeq4.6.0
big-iq centralized managementeq5.0.0
big-iq centralized managementeq5.1.0
big-iq centralized managementeq5.2.0
big-iq centralized managementeq5.3.0
big-iq centralized managementeq5.4.0
big-ip afmeq11.5.1
big-ip afmeq11.5.2
big-ip afmeq11.5.3
big-ip afmeq11.5.4

Name	Operator	Version
big-iq centralized management	eq	4.6.0
big-iq centralized management	eq	5.0.0
big-iq centralized management	eq	5.1.0
big-iq centralized management	eq	5.2.0
big-iq centralized management	eq	5.3.0
big-iq centralized management	eq	5.4.0
big-ip afm	eq	11.5.1
big-ip afm	eq	11.5.2
big-ip afm	eq	11.5.3
big-ip afm	eq	11.5.4

Rows per page:

1-10 of 2231