PT-2018-16999 · F5 · F5 Big-Ip

Published

2018-03-22

Updated

2019-10-03

CVE-2018-5505

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 13.1.0 through 13.1.0.3

Description The issue occurs when ASM and AVR are both provisioned and the virtual server is configured with a DNS profile, where the Protocol setting is set to TCP. This can cause TMM to restart while processing DNS requests.

Recommendations For F5 BIG-IP versions 13.1.0 through 13.1.0.3, consider reconfiguring the virtual server to use a different protocol setting until a fix is available. As a temporary workaround, restrict the use of the DNS profile with TCP protocol to minimize the risk of TMM restarts.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-5505

Affected Products

F5 Big-Ip

PT-2018-16999 · F5 · F5 Big-Ip

CVE-2018-5505

Related Identifiers

Affected Products

References · 5