cve-2015-4638
Vulnerability from cvelistv5
Published
2015-09-18 14:00
Modified
2024-08-06 06:18
Severity ?
Summary
The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.3.0 through 11.5.2 and 11.6.0 through 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.2.1 through 11.3.0, and BIG-IP PSM 11.2.1 through 11.4.1 allows remote attackers to cause a denial of service (Traffic Management Microkernel restart) via a fragmented packet.
References
cve@mitre.orghttp://www.securitytracker.com/id/1033578
cve@mitre.orghttps://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.htmlVendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1033578
af854a3a-2127-422b-91ae-364da2661108https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.htmlVendor Advisory
Impacted products
Vendor Product Version
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T06:18:12.063Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html"
          },
          {
            "name": "1033578",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1033578"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-09-08T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.3.0 through 11.5.2 and 11.6.0 through 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.2.1 through 11.3.0, and BIG-IP PSM 11.2.1 through 11.4.1 allows remote attackers to cause a denial of service (Traffic Management Microkernel restart) via a fragmented packet."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2015-09-18T13:57:03",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html"
        },
        {
          "name": "1033578",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1033578"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2015-4638",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.3.0 through 11.5.2 and 11.6.0 through 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.2.1 through 11.3.0, and BIG-IP PSM 11.2.1 through 11.4.1 allows remote attackers to cause a denial of service (Traffic Management Microkernel restart) via a fragmented packet."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html",
              "refsource": "CONFIRM",
              "url": "https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html"
            },
            {
              "name": "1033578",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1033578"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2015-4638",
    "datePublished": "2015-09-18T14:00:00",
    "dateReserved": "2015-06-16T00:00:00",
    "dateUpdated": "2024-08-06T06:18:12.063Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7507BDFF-5B52-4A06-9F8C-2B6F3958162A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E0141FA-44E9-460E-B175-29A7FA251301\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8DD27EF7-3329-4009-959F-D2E4D5935E57\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3755740D-F1DC-4910-ADDD-9D491515201C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA244A7D-F65D-4114-81C8-CE811959EA10\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5EA9F72C-8344-4370-B511-31BEC8BA63E8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B276E4DF-69FC-4158-B93A-781A45605034\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"52CD200C-1D14-471F-93C1-027CC676C26C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:11.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D1850CE-D20D-4677-8CF2-1DB3A4EB33F2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:11.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A70B1E2-0B3D-4DE9-8ED9-777F73D0B750\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:11.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7D226F1-6513-4233-BE20-58D7AB24978F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:11.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B33B2082-E040-4799-A260-BA687ED8614E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:11.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A85766A4-2181-4719-ADCF-4FEA0031DB80\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:11.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B70D2BD5-8E3F-4B57-84EF-3AF40F6378F1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC69B41E-C22D-48D2-8609-60C018F1F48D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:11.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"270EEBF6-46FA-48FC-BEC9-9C0838A86BB4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:11.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93310708-E1FE-445A-BB1F-7D1F553AEC65\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:11.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1AD2C1D2-103E-4B0F-84AA-999F01E695F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:11.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"855E91A4-0A0C-4E5C-8019-FB513A793803\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:11.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FCCC2092-E109-4FF6-9B85-6C9434269851\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:11.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"475F0EF8-42CB-4099-9C4A-390F946C4924\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:11.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3136A8D1-3D0D-46B3-9A3A-737074864F1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"96673865-3D37-4562-831E-3ACE9DFB471E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A49B1D82-3EC2-4E20-8FF5-58248905E964\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E4CC3E0-F9B8-433F-A2B0-2306144F9B6A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B8993275-E17E-4A69-8D95-A8229E0E88D6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0594DBC5-8470-416C-A5EA-E04F5AB2C799\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B50BF19F-71B4-47C0-A96E-6EB90FCC6AE7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BD3A3BA6-6F60-45CA-8F52-687B671B077A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7D7863D-B064-4D7A-A66B-C3D3523425FD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C4CB61D3-DF59-4EE0-A0F0-5899850496B9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:11.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FF646EF0-56C8-492E-A78D-B00ECAA8D851\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:11.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0D42B922-A5F7-41FC-A361-BA0E065B5B00\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:11.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"13E6D2CA-CC4F-4317-A842-4DF0693B0CB6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:11.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB017D7A-3290-4EF5-9647-B488771A5F32\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:11.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4F316C54-FAE4-48D8-9E40-ED358C30BF24\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:11.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5CDEC701-DAB3-4D92-AA67-B886E6693E46\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"624EFAEB-15C2-422F-BAD1-D0BC37878349\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"76C1525D-46DE-4362-BBAD-095BBF718990\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"259C05BB-6349-4005-9372-21623DC5002D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E5D27D4A-BD5C-4FA9-AA72-F7956298DE06\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"12F86EB5-D581-4103-A802-44D968BA8D55\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36F383ED-8CB5-400D-BFDB-BD5B8CD8C7AE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2FF5A5F6-4BA3-4276-8679-B5560EACF2E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3CA52816-C4B7-4B1E-A950-EE9B571CB06B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F2AA5127-5314-4026-905D-937B7B62473F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"09E42DAA-700D-487C-9238-F7F3D75A8C1A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B6EA0C0-9C26-4A87-98F1-5B317D606ECB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D379372-A226-4230-B1F3-04C696518BD8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"22FAC35D-2803-49B0-9382-F14594B88FC5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CB8D3B87-B8F5-490A-B1D9-04F2EE93EEA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:11.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA54B88F-4A16-4F40-8A3B-B107F0CA2334\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"17C28542-51A4-4464-ADF9-C6376F829F4A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:11.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"584853F9-644F-40B2-A28F-1CE9B51F84F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:11.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DFE665CF-A633-474E-9519-D20E3D3958CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:11.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FF7FCC81-2F1D-4EF5-956B-085FB7FEFAE7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:11.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"200A9CE9-E56D-4EFA-AC8A-954F945DDDBB\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.3.0 through 11.5.2 and 11.6.0 through 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.2.1 through 11.3.0, and BIG-IP PSM 11.2.1 through 11.4.1 allows remote attackers to cause a denial of service (Traffic Management Microkernel restart) via a fragmented packet.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad en el servidor virtual FastL4 en F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller y PEM 11.3.0 hasta la versi\\u00f3n 11.5.2 y 11.6.0 hasta la versi\\u00f3n 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator y WOM 11.2.1 hasta la versi\\u00f3n 11.3.0 y BIG-IP PSM 11.2.1 hasta la versi\\u00f3n 11.4.1, permite a atacantes remotos causar una denegaci\\u00f3n de servicio (reinicio del Traffic Management Microkernel) a trav\\u00e9s de un paquete fragmentado.\"}]",
      "id": "CVE-2015-4638",
      "lastModified": "2024-11-21T02:31:27.213",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2015-09-18T14:59:00.097",
      "references": "[{\"url\": \"http://www.securitytracker.com/id/1033578\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1033578\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2015-4638\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2015-09-18T14:59:00.097\",\"lastModified\":\"2024-11-21T02:31:27.213\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.3.0 through 11.5.2 and 11.6.0 through 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.2.1 through 11.3.0, and BIG-IP PSM 11.2.1 through 11.4.1 allows remote attackers to cause a denial of service (Traffic Management Microkernel restart) via a fragmented packet.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad en el servidor virtual FastL4 en F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller y PEM 11.3.0 hasta la versi\u00f3n 11.5.2 y 11.6.0 hasta la versi\u00f3n 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator y WOM 11.2.1 hasta la versi\u00f3n 11.3.0 y BIG-IP PSM 11.2.1 hasta la versi\u00f3n 11.4.1, permite a atacantes remotos causar una denegaci\u00f3n de servicio (reinicio del Traffic Management Microkernel) a trav\u00e9s de un paquete fragmentado.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7507BDFF-5B52-4A06-9F8C-2B6F3958162A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E0141FA-44E9-460E-B175-29A7FA251301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DD27EF7-3329-4009-959F-D2E4D5935E57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3755740D-F1DC-4910-ADDD-9D491515201C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA244A7D-F65D-4114-81C8-CE811959EA10\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EA9F72C-8344-4370-B511-31BEC8BA63E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B276E4DF-69FC-4158-B93A-781A45605034\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52CD200C-1D14-471F-93C1-027CC676C26C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:11.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D1850CE-D20D-4677-8CF2-1DB3A4EB33F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:11.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A70B1E2-0B3D-4DE9-8ED9-777F73D0B750\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:11.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7D226F1-6513-4233-BE20-58D7AB24978F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:11.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B33B2082-E040-4799-A260-BA687ED8614E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:11.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A85766A4-2181-4719-ADCF-4FEA0031DB80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:11.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B70D2BD5-8E3F-4B57-84EF-3AF40F6378F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC69B41E-C22D-48D2-8609-60C018F1F48D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:11.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"270EEBF6-46FA-48FC-BEC9-9C0838A86BB4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:11.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93310708-E1FE-445A-BB1F-7D1F553AEC65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:11.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AD2C1D2-103E-4B0F-84AA-999F01E695F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:11.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"855E91A4-0A0C-4E5C-8019-FB513A793803\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:11.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCCC2092-E109-4FF6-9B85-6C9434269851\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:11.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"475F0EF8-42CB-4099-9C4A-390F946C4924\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:11.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3136A8D1-3D0D-46B3-9A3A-737074864F1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96673865-3D37-4562-831E-3ACE9DFB471E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A49B1D82-3EC2-4E20-8FF5-58248905E964\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E4CC3E0-F9B8-433F-A2B0-2306144F9B6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8993275-E17E-4A69-8D95-A8229E0E88D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0594DBC5-8470-416C-A5EA-E04F5AB2C799\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B50BF19F-71B4-47C0-A96E-6EB90FCC6AE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD3A3BA6-6F60-45CA-8F52-687B671B077A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7D7863D-B064-4D7A-A66B-C3D3523425FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4CB61D3-DF59-4EE0-A0F0-5899850496B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:11.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF646EF0-56C8-492E-A78D-B00ECAA8D851\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:11.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D42B922-A5F7-41FC-A361-BA0E065B5B00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:11.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13E6D2CA-CC4F-4317-A842-4DF0693B0CB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:11.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB017D7A-3290-4EF5-9647-B488771A5F32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:11.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F316C54-FAE4-48D8-9E40-ED358C30BF24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:11.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5CDEC701-DAB3-4D92-AA67-B886E6693E46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"624EFAEB-15C2-422F-BAD1-D0BC37878349\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76C1525D-46DE-4362-BBAD-095BBF718990\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"259C05BB-6349-4005-9372-21623DC5002D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5D27D4A-BD5C-4FA9-AA72-F7956298DE06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12F86EB5-D581-4103-A802-44D968BA8D55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36F383ED-8CB5-400D-BFDB-BD5B8CD8C7AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2FF5A5F6-4BA3-4276-8679-B5560EACF2E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CA52816-C4B7-4B1E-A950-EE9B571CB06B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2AA5127-5314-4026-905D-937B7B62473F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09E42DAA-700D-487C-9238-F7F3D75A8C1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B6EA0C0-9C26-4A87-98F1-5B317D606ECB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D379372-A226-4230-B1F3-04C696518BD8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22FAC35D-2803-49B0-9382-F14594B88FC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB8D3B87-B8F5-490A-B1D9-04F2EE93EEA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:11.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA54B88F-4A16-4F40-8A3B-B107F0CA2334\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17C28542-51A4-4464-ADF9-C6376F829F4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:11.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"584853F9-644F-40B2-A28F-1CE9B51F84F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:11.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFE665CF-A633-474E-9519-D20E3D3958CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:11.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF7FCC81-2F1D-4EF5-956B-085FB7FEFAE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:11.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"200A9CE9-E56D-4EFA-AC8A-954F945DDDBB\"}]}]}],\"references\":[{\"url\":\"http://www.securitytracker.com/id/1033578\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1033578\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.