CVE-2018-5506

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 11.2.1 F5 BIG-IP versions 11.5.1 through 11.5.5 F5 BIG-IP versions 11.6.1 F5 BIG-IP versions 12.1.0 through 12.1.2 F5 BIG-IP version 13.0.0

Description The issue allows possible unauthenticated bruteforce on the em server ip authorization parameter to obtain SSL client certificates used for mutual authentication between BIG-IQ or Enterprise Manager (EM) and managed BIG-IP devices. This is due to the Apache modules apache auth token mod and mod auth f5 auth token.cpp.

Recommendations For F5 BIG-IP version 11.2.1, update to a fixed version to prevent unauthenticated bruteforce attacks. For F5 BIG-IP versions 11.5.1 through 11.5.5, update to a fixed version to prevent unauthenticated bruteforce attacks. For F5 BIG-IP version 11.6.1, update to a fixed version to prevent unauthenticated bruteforce attacks. For F5 BIG-IP versions 12.1.0 through 12.1.2, update to a fixed version to prevent unauthenticated bruteforce attacks. For F5 BIG-IP version 13.0.0, update to a fixed version to prevent unauthenticated bruteforce attacks.