PT-2018-17011 · F5 · F5 Big-Ip

Publicado

2018-05-02

Atualizado

2018-06-13

CVE-2018-5517

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 13.1.0 through 13.1.0.5

Description The issue is caused by malformed TCP packets sent to a self IP address or a FastL4 virtual server, which may result in an interruption of service. This issue affects the data plane virtual servers and self IPs, but the control plane is not exposed to this problem.

Recommendations For F5 BIG-IP versions 13.1.0 through 13.1.0.5, consider restricting access to self IP addresses and FastL4 virtual servers to minimize the risk of exploitation until a fix is available.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2018-5517

Produtos afetados

F5 Big-Ip

PT-2018-17011 · F5 · F5 Big-Ip

CVE-2018-5517

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4