cve-2018-15317
Vulnerability from cvelistv5
Published
2018-10-31 14:00
Modified
2024-08-05 09:46
Severity ?
Summary
In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.2.1-11.6.3.2, an attacker sending specially crafted SSL records to a SSL Virtual Server will cause corruption in the SSL data structures leading to intermittent decrypt BAD_RECORD_MAC errors. Clients will be unable to access the application load balanced by a virtual server with an SSL profile until tmm is restarted.
References
f5sirt@f5.comhttps://support.f5.com/csp/article/K43625118Mitigation, Vendor Advisory
f5sirt@f5.comhttps://support.f5.com/csp/article/K43625118?utm_source=f5support&amp%3Butm_medium=RSS
af854a3a-2127-422b-91ae-364da2661108https://support.f5.com/csp/article/K43625118Mitigation, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://support.f5.com/csp/article/K43625118?utm_source=f5support&amp%3Butm_medium=RSS
Impacted products
Vendor Product Version
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T09:46:25.577Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K43625118"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K43625118?utm_source=f5support\u0026amp%3Butm_medium=RSS"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator)",
          "vendor": "F5 Networks, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, 11.2.1-11.5.6"
            }
          ]
        }
      ],
      "datePublic": "2018-10-30T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.2.1-11.6.3.2, an attacker sending specially crafted SSL records to a SSL Virtual Server will cause corruption in the SSL data structures leading to intermittent decrypt BAD_RECORD_MAC errors. Clients will be unable to access the application load balanced by a virtual server with an SSL profile until tmm is restarted."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "DoS",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-10-09T19:07:46",
        "orgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
        "shortName": "f5"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.f5.com/csp/article/K43625118"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.f5.com/csp/article/K43625118?utm_source=f5support\u0026amp%3Butm_medium=RSS"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "f5sirt@f5.com",
          "ID": "CVE-2018-15317",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, 11.2.1-11.5.6"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "F5 Networks, Inc."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.2.1-11.6.3.2, an attacker sending specially crafted SSL records to a SSL Virtual Server will cause corruption in the SSL data structures leading to intermittent decrypt BAD_RECORD_MAC errors. Clients will be unable to access the application load balanced by a virtual server with an SSL profile until tmm is restarted."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "DoS"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.f5.com/csp/article/K43625118",
              "refsource": "CONFIRM",
              "url": "https://support.f5.com/csp/article/K43625118"
            },
            {
              "name": "https://support.f5.com/csp/article/K43625118?utm_source=f5support\u0026amp;utm_medium=RSS",
              "refsource": "CONFIRM",
              "url": "https://support.f5.com/csp/article/K43625118?utm_source=f5support\u0026amp;utm_medium=RSS"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
    "assignerShortName": "f5",
    "cveId": "CVE-2018-15317",
    "datePublished": "2018-10-31T14:00:00",
    "dateReserved": "2018-08-14T00:00:00",
    "dateUpdated": "2024-08-05T09:46:25.577Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"C0740491-CFC6-4D53-A39F-3244710282D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"1F9094D4-087E-45D8-AD7B-A2FA1BF1E2F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"D746D9C6-28DE-4170-9F08-16C58F160752\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"EFECB54D-C240-495E-A97B-6694BB992C9D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"B3A526B1-EB66-497F-B8B5-45205781B323\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"88880F08-386C-4BC3-952D-DD1665D8B1EB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"41D7E35D-EAC4-4D00-BB52-19414EEDD286\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"D8478F27-F451-4C94-9D45-9FCF30B6EB84\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"B6F24FC1-B549-48F9-AF0E-AB441E5EE4B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"9032E773-CAB2-4108-A86B-04A8383663BE\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"C47559FB-EC85-4A3A-B967-0BD37934B33D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"40C7F0AE-F55C-42D9-A6EF-1A0D53FFD4DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"17F63A24-36A9-4C90-B73B-131A5658C4C1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"CE608E62-F3E2-405C-8239-760A7C1E1527\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"51218200-4536-4ED9-AA9A-301E2B30B829\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"B3EDF519-7610-4223-BBD7-B75438ACD8B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"39C62474-8F2E-4394-8B9E-FB06F8CE95C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"CCA46825-0425-4C7D-B846-05E6D4081F51\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"05456A39-5301-421B-853A-4651E1B13DE8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"224F2348-19DC-4242-8A1E-5F5BDCB86B9C\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"D1C0F266-7321-4BBC-B5C6-8D25DCC1715F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"76F51999-6742-445C-936B-C2873C5F27CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"8A537300-3211-4136-89C7-B99AD4F13B8C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"9F921FE3-B481-4552-AE7C-FEE05DB6D301\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"E021297A-FD19-446B-B526-7516503B6D24\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"28DE49F7-E999-4D3F-8767-A2C3615DF780\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"21A5DC79-66A0-4195-9A19-42FD2B5D7941\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"897F4A4D-D2E2-4171-8ECA-7E981034DE16\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"84F95F43-BF52-423E-9B1A-55D6B7262A57\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"DC852AA9-7C30-44D8-A964-07DF817A4FF2\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"8ABCEA29-0EDF-4D41-BB61-F2C293A5A2E2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"FB32AD06-69AF-4289-B854-ED9141E76582\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"31C5842B-0261-4CDB-888E-329FF7D73108\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"7B73F018-4FAD-48B3-9806-FC827787E323\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"9D11EBE7-741F-4585-962F-99EAA29C1F0E\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"55366FD7-D7BA-4D36-AC5D-1B822940842F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"D63E2912-58B9-4541-8E5D-993F73AB74F1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"FC818DB1-C85A-47A3-ABE2-0FFCD7AC3E40\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"11876D9C-0082-454A-8254-B5FD74E87719\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"57F6C963-A1BF-4579-9345-D0207269577A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"8C050740-2FD3-474D-A09A-C122F031342F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"C21FA11D-0C58-4DF7-85E0-5E8E7B1F14A8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"ADB7193B-3BEF-4920-9893-FF196E785850\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"2680D4AD-CCD0-4964-8D8F-CF1FCDA2BEC3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"DC6B989A-BA55-47F5-8269-D9FA435ECC29\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"2FC80682-E373-4508-A297-EA19BF62BABA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"42E368FA-5A85-428E-B63D-FD027CD46E8E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"2E5B875A-ACFE-4C98-B6C4-5A6262C09E23\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"A00660C1-7A1C-42CF-A829-503DC2EC08E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"F534EADF-DA49-4EDD-97F8-C4046E890D8B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"9EBEBCB3-AF9E-4049-980D-E87B756D6D51\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"34EC5593-4293-4D2A-A110-25D371F3E281\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"1ED25E87-39BC-4D15-B37A-FCBE97F7D3D2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"49F45207-07ED-4DF8-ABDA-4AD3E9CA26D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"D0233F1B-2DDB-4B01-A549-E76C18BBC3F1\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"B885F0E9-8019-4053-AAAA-2C136D55FB71\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"6217D65D-B15B-426B-8692-BA461BB57663\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"56181224-56D4-43BE-A296-52DF599A2BD5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"1D43A55D-E9D4-45A3-8B41-B4B22BE4A536\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"90DBE74F-6E43-448F-9479-8FD75D5DCC22\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.2.1\", \"versionEndIncluding\": \"11.5.6\", \"matchCriteriaId\": \"D655B3FF-5173-4850-B94C-B864E2115D95\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.6.0\", \"versionEndIncluding\": \"11.6.3.2\", \"matchCriteriaId\": \"91F78D2C-DC7C-4B1C-AB44-3CB810240D42\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3.5\", \"matchCriteriaId\": \"6355263D-8407-466D-BB71-CB6316EDC668\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.0.7\", \"matchCriteriaId\": \"D9479031-90AA-4C1D-B14C-CDFFBC99CCDE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.0.0.2\", \"matchCriteriaId\": \"E6ADE585-616C-4B40-A40C-EE97A8FAC653\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.2.1-11.6.3.2, an attacker sending specially crafted SSL records to a SSL Virtual Server will cause corruption in the SSL data structures leading to intermittent decrypt BAD_RECORD_MAC errors. Clients will be unable to access the application load balanced by a virtual server with an SSL profile until tmm is restarted.\"}, {\"lang\": \"es\", \"value\": \"En BIG-IP versi\\u00f3n 14.0.0 hasta 4.0.0.2, versi\\u00f3n 13.0.0 hasta 13.1.1.5,  versi\\u00f3n 12.1.0 hasta 12.1.4.1 y versi\\u00f3n 11.2.1 hasta 11.6.3.2, un atacante que env\\u00ede registros SSL especialmente creados hacia un servidor virtual SSL puede causar da\\u00f1os en las estructuras de datos SSL que llevan a descifrar errores BAD_RECORD_MAC de forma intermitente. Los clientes ser\\u00e1n inhabilitados para acceder a la carga de la aplicaci\\u00f3n balanceada por un servidor virtual con un perfil SSL hasta que  tmm sea reiniciado.\"}]",
      "id": "CVE-2018-15317",
      "lastModified": "2024-11-21T03:50:32.840",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2018-10-31T14:29:00.250",
      "references": "[{\"url\": \"https://support.f5.com/csp/article/K43625118\", \"source\": \"f5sirt@f5.com\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}, {\"url\": \"https://support.f5.com/csp/article/K43625118?utm_source=f5support\u0026amp%3Butm_medium=RSS\", \"source\": \"f5sirt@f5.com\"}, {\"url\": \"https://support.f5.com/csp/article/K43625118\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}, {\"url\": \"https://support.f5.com/csp/article/K43625118?utm_source=f5support\u0026amp%3Butm_medium=RSS\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "f5sirt@f5.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2018-15317\",\"sourceIdentifier\":\"f5sirt@f5.com\",\"published\":\"2018-10-31T14:29:00.250\",\"lastModified\":\"2024-11-21T03:50:32.840\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.2.1-11.6.3.2, an attacker sending specially crafted SSL records to a SSL Virtual Server will cause corruption in the SSL data structures leading to intermittent decrypt BAD_RECORD_MAC errors. Clients will be unable to access the application load balanced by a virtual server with an SSL profile until tmm is restarted.\"},{\"lang\":\"es\",\"value\":\"En BIG-IP versi\u00f3n 14.0.0 hasta 4.0.0.2, versi\u00f3n 13.0.0 hasta 13.1.1.5,  versi\u00f3n 12.1.0 hasta 12.1.4.1 y versi\u00f3n 11.2.1 hasta 11.6.3.2, un atacante que env\u00ede registros SSL especialmente creados hacia un servidor virtual SSL puede causar da\u00f1os en las estructuras de datos SSL que llevan a descifrar errores BAD_RECORD_MAC de forma intermitente. Los clientes ser\u00e1n inhabilitados para acceder a la carga de la aplicaci\u00f3n balanceada por un servidor virtual con un perfil SSL hasta que  tmm sea reiniciado.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"C0740491-CFC6-4D53-A39F-3244710282D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"1F9094D4-087E-45D8-AD7B-A2FA1BF1E2F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"D746D9C6-28DE-4170-9F08-16C58F160752\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"EFECB54D-C240-495E-A97B-6694BB992C9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"B3A526B1-EB66-497F-B8B5-45205781B323\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"88880F08-386C-4BC3-952D-DD1665D8B1EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"41D7E35D-EAC4-4D00-BB52-19414EEDD286\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"D8478F27-F451-4C94-9D45-9FCF30B6EB84\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"B6F24FC1-B549-48F9-AF0E-AB441E5EE4B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"9032E773-CAB2-4108-A86B-04A8383663BE\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"C47559FB-EC85-4A3A-B967-0BD37934B33D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"40C7F0AE-F55C-42D9-A6EF-1A0D53FFD4DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"17F63A24-36A9-4C90-B73B-131A5658C4C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"CE608E62-F3E2-405C-8239-760A7C1E1527\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"51218200-4536-4ED9-AA9A-301E2B30B829\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"B3EDF519-7610-4223-BBD7-B75438ACD8B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"39C62474-8F2E-4394-8B9E-FB06F8CE95C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"CCA46825-0425-4C7D-B846-05E6D4081F51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"05456A39-5301-421B-853A-4651E1B13DE8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"224F2348-19DC-4242-8A1E-5F5BDCB86B9C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"D1C0F266-7321-4BBC-B5C6-8D25DCC1715F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"76F51999-6742-445C-936B-C2873C5F27CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"8A537300-3211-4136-89C7-B99AD4F13B8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"9F921FE3-B481-4552-AE7C-FEE05DB6D301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"E021297A-FD19-446B-B526-7516503B6D24\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"28DE49F7-E999-4D3F-8767-A2C3615DF780\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"21A5DC79-66A0-4195-9A19-42FD2B5D7941\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"897F4A4D-D2E2-4171-8ECA-7E981034DE16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"84F95F43-BF52-423E-9B1A-55D6B7262A57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"DC852AA9-7C30-44D8-A964-07DF817A4FF2\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"8ABCEA29-0EDF-4D41-BB61-F2C293A5A2E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"FB32AD06-69AF-4289-B854-ED9141E76582\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"31C5842B-0261-4CDB-888E-329FF7D73108\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"7B73F018-4FAD-48B3-9806-FC827787E323\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"9D11EBE7-741F-4585-962F-99EAA29C1F0E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"55366FD7-D7BA-4D36-AC5D-1B822940842F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"D63E2912-58B9-4541-8E5D-993F73AB74F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"FC818DB1-C85A-47A3-ABE2-0FFCD7AC3E40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"11876D9C-0082-454A-8254-B5FD74E87719\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"57F6C963-A1BF-4579-9345-D0207269577A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"8C050740-2FD3-474D-A09A-C122F031342F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"C21FA11D-0C58-4DF7-85E0-5E8E7B1F14A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"ADB7193B-3BEF-4920-9893-FF196E785850\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"2680D4AD-CCD0-4964-8D8F-CF1FCDA2BEC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"DC6B989A-BA55-47F5-8269-D9FA435ECC29\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"2FC80682-E373-4508-A297-EA19BF62BABA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"42E368FA-5A85-428E-B63D-FD027CD46E8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"2E5B875A-ACFE-4C98-B6C4-5A6262C09E23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"A00660C1-7A1C-42CF-A829-503DC2EC08E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"F534EADF-DA49-4EDD-97F8-C4046E890D8B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"9EBEBCB3-AF9E-4049-980D-E87B756D6D51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"34EC5593-4293-4D2A-A110-25D371F3E281\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"1ED25E87-39BC-4D15-B37A-FCBE97F7D3D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"49F45207-07ED-4DF8-ABDA-4AD3E9CA26D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"D0233F1B-2DDB-4B01-A549-E76C18BBC3F1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"B885F0E9-8019-4053-AAAA-2C136D55FB71\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"6217D65D-B15B-426B-8692-BA461BB57663\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"56181224-56D4-43BE-A296-52DF599A2BD5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"1D43A55D-E9D4-45A3-8B41-B4B22BE4A536\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"90DBE74F-6E43-448F-9479-8FD75D5DCC22\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.2.1\",\"versionEndIncluding\":\"11.5.6\",\"matchCriteriaId\":\"D655B3FF-5173-4850-B94C-B864E2115D95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.6.0\",\"versionEndIncluding\":\"11.6.3.2\",\"matchCriteriaId\":\"91F78D2C-DC7C-4B1C-AB44-3CB810240D42\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3.5\",\"matchCriteriaId\":\"6355263D-8407-466D-BB71-CB6316EDC668\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.0.7\",\"matchCriteriaId\":\"D9479031-90AA-4C1D-B14C-CDFFBC99CCDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.0.0.2\",\"matchCriteriaId\":\"E6ADE585-616C-4B40-A40C-EE97A8FAC653\"}]}]}],\"references\":[{\"url\":\"https://support.f5.com/csp/article/K43625118\",\"source\":\"f5sirt@f5.com\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K43625118?utm_source=f5support\u0026amp%3Butm_medium=RSS\",\"source\":\"f5sirt@f5.com\"},{\"url\":\"https://support.f5.com/csp/article/K43625118\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K43625118?utm_source=f5support\u0026amp%3Butm_medium=RSS\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.