Design/Logic Flaw

2019-12-2318:15:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.7%

JSON

On versions 15.0.0-15.0.1.1, 14.0.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, under certain conditions, a multi-bladed BIG-IP Virtual Clustered Multiprocessing (vCMP) may drop broadcast packets when they are rebroadcast to the vCMP guest secondary blades. An attacker can leverage the fragmented broadcast IP packets to perform any type of fragmentation-based attack.

CPENameOperatorVersion
big-ip_access_policy_managerge12.1.0
big-ip_access_policy_managerle12.1.5
big-ip_access_policy_managerge11.5.2
big-ip_access_policy_managerle11.6.5
big-ip_access_policy_managerge13.0.0
big-ip_access_policy_managerlt13.1.3.2
big-ip_access_policy_managerge14.0.0
big-ip_access_policy_managerlt14.1.2.3
big-ip_access_policy_managerge15.0.0
big-ip_access_policy_managerlt15.1.0

Name	Operator	Version
big-ip_access_policy_manager	ge	12.1.0
big-ip_access_policy_manager	le	12.1.5
big-ip_access_policy_manager	ge	11.5.2
big-ip_access_policy_manager	le	11.6.5
big-ip_access_policy_manager	ge	13.0.0
big-ip_access_policy_manager	lt	13.1.3.2
big-ip_access_policy_manager	ge	14.0.0
big-ip_access_policy_manager	lt	14.1.2.3
big-ip_access_policy_manager	ge	15.0.0
big-ip_access_policy_manager	lt	15.1.0

Rows per page:

1-10 of 1101

References

support.f5.com/csp/article/K95117754