Design/Logic Flaw

2018-10-3114:29:00

PRIOn knowledge base

www.prio-n.com

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.1%

JSON

On BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, undisclosed traffic patterns may lead to denial of service conditions for the BIG-IP system. The configuration which exposes this condition is the BIG-IP self IP address which is part of a VLAN group and has the Port Lockdown setting configured with anything other than “allow-all”.

CPENameOperatorVersion
big-ip_access_policy_managerge13.0.0
big-ip_access_policy_managerle13.1.1.1
big-ip_access_policy_managerge14.0.0
big-ip_access_policy_managerle14.0.0.2
big-ip_advanced_firewall_managerge13.0.0
big-ip_advanced_firewall_managerle13.1.1.1
big-ip_advanced_firewall_managerge14.0.0
big-ip_advanced_firewall_managerle14.0.0.2
big-ip_analyticsge13.0.0
big-ip_analyticsle13.1.1.1

Name	Operator	Version
big-ip_access_policy_manager	ge	13.0.0
big-ip_access_policy_manager	le	13.1.1.1
big-ip_access_policy_manager	ge	14.0.0
big-ip_access_policy_manager	le	14.0.0.2
big-ip_advanced_firewall_manager	ge	13.0.0
big-ip_advanced_firewall_manager	le	13.1.1.1
big-ip_advanced_firewall_manager	ge	14.0.0
big-ip_advanced_firewall_manager	le	14.0.0.2
big-ip_analytics	ge	13.0.0
big-ip_analytics	le	13.1.1.1

Rows per page:

1-10 of 521

References

support.f5.com/csp/article/K72442354