CVE-2013-6016

EPSS 1.28%
Veröffentlicht 26.10.2013 17:55:03
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cret@cert.org
Teams Watchlist Login
Unerledigt Login

The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, APM, ASM, Edge Gateway, GTM, Link Controller, and WOM 10.0.0 through 10.2.2 and 11.0.0; Analytics 11.0.0; PSM 9.4.0 through 9.4.8, 10.0.0 through 10.2.4, and 11.0.0 through 11.4.1; and WebAccelerator 9.4.0 through 9.4.8, 10.0.0 through 10.2.4, and 11.0.0 through 11.3.0 might change a TCP connection to the ESTABLISHED state before receiving the ACK packet, which allows remote attackers to cause a denial of service (SIGFPE or assertion failure and TMM restart) via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

F5 ≫ Big-ip Global Traffic Manager Version10.0.0

F5 ≫ Big-ip Global Traffic Manager Version10.0.1

F5 ≫ Big-ip Global Traffic Manager Version10.1.0

F5 ≫ Big-ip Global Traffic Manager Version10.2.0

F5 ≫ Big-ip Global Traffic Manager Version10.2.1

F5 ≫ Big-ip Global Traffic Manager Version10.2.2

F5 ≫ Big-ip Global Traffic Manager Version11.0.0

F5 ≫ Big-ip Webaccelerator Version9.4.0

F5 ≫ Big-ip Webaccelerator Version9.4.1

F5 ≫ Big-ip Webaccelerator Version9.4.2

F5 ≫ Big-ip Webaccelerator Version9.4.3

F5 ≫ Big-ip Webaccelerator Version9.4.4

F5 ≫ Big-ip Webaccelerator Version9.4.5

F5 ≫ Big-ip Webaccelerator Version9.4.6

F5 ≫ Big-ip Webaccelerator Version9.4.7

F5 ≫ Big-ip Webaccelerator Version9.4.8

F5 ≫ Big-ip Webaccelerator Version10.0.0

F5 ≫ Big-ip Webaccelerator Version10.0.1

F5 ≫ Big-ip Webaccelerator Version10.1.0

F5 ≫ Big-ip Webaccelerator Version10.2.0

F5 ≫ Big-ip Webaccelerator Version10.2.1

F5 ≫ Big-ip Webaccelerator Version10.2.2

F5 ≫ Big-ip Webaccelerator Version10.2.3

F5 ≫ Big-ip Webaccelerator Version10.2.4

F5 ≫ Big-ip Webaccelerator Version11.0.0

F5 ≫ Big-ip Webaccelerator Version11.1.0

F5 ≫ Big-ip Webaccelerator Version11.2.0

F5 ≫ Big-ip Webaccelerator Version11.2.1

F5 ≫ Big-ip Webaccelerator Version11.3.0

F5 ≫ Big-ip Local Traffic Manager Version10.0.0

F5 ≫ Big-ip Local Traffic Manager Version10.0.1

F5 ≫ Big-ip Local Traffic Manager Version10.1.0

F5 ≫ Big-ip Local Traffic Manager Version10.2.0

F5 ≫ Big-ip Local Traffic Manager Version10.2.1

F5 ≫ Big-ip Local Traffic Manager Version10.2.2

F5 ≫ Big-ip Local Traffic Manager Version11.0.0

F5 ≫ Big-ip Application Security Manager Version10.0.0

F5 ≫ Big-ip Application Security Manager Version10.0.1

F5 ≫ Big-ip Application Security Manager Version10.1.0

F5 ≫ Big-ip Application Security Manager Version10.2.0

F5 ≫ Big-ip Application Security Manager Version10.2.1

F5 ≫ Big-ip Application Security Manager Version10.2.2

F5 ≫ Big-ip Application Security Manager Version11.0.0

F5 ≫ Big-ip Access Policy Manager Version10.1.0

F5 ≫ Big-ip Access Policy Manager Version10.2.0

F5 ≫ Big-ip Access Policy Manager Version10.2.1

F5 ≫ Big-ip Access Policy Manager Version10.2.2

F5 ≫ Big-ip Access Policy Manager Version11.0.0

F5 ≫ Big-ip Wan Optimization Manager Version10.0.0

F5 ≫ Big-ip Wan Optimization Manager Version10.0.1

F5 ≫ Big-ip Wan Optimization Manager Version10.1.0

F5 ≫ Big-ip Wan Optimization Manager Version10.2.0

F5 ≫ Big-ip Wan Optimization Manager Version10.2.1

F5 ≫ Big-ip Wan Optimization Manager Version10.2.2

F5 ≫ Big-ip Wan Optimization Manager Version11.0.0

F5 ≫ Big-ip Edge Gateway Version10.1.0

F5 ≫ Big-ip Edge Gateway Version10.2.0

F5 ≫ Big-ip Edge Gateway Version10.2.1

F5 ≫ Big-ip Edge Gateway Version10.2.2

F5 ≫ Big-ip Edge Gateway Version11.0.0

F5 ≫ Big-ip Protocol Security Module Version9.4.5

F5 ≫ Big-ip Protocol Security Module Version9.4.6

F5 ≫ Big-ip Protocol Security Module Version9.4.7

F5 ≫ Big-ip Protocol Security Module Version9.4.8

F5 ≫ Big-ip Protocol Security Module Version10.0.0

F5 ≫ Big-ip Protocol Security Module Version10.0.1

F5 ≫ Big-ip Protocol Security Module Version10.1.0

F5 ≫ Big-ip Protocol Security Module Version10.2.0

F5 ≫ Big-ip Protocol Security Module Version10.2.1

F5 ≫ Big-ip Protocol Security Module Version10.2.2

F5 ≫ Big-ip Protocol Security Module Version10.2.3

F5 ≫ Big-ip Protocol Security Module Version10.2.4

F5 ≫ Big-ip Protocol Security Module Version11.0.0

F5 ≫ Big-ip Protocol Security Module Version11.1.0

F5 ≫ Big-ip Protocol Security Module Version11.2.0

F5 ≫ Big-ip Protocol Security Module Version11.2.1

F5 ≫ Big-ip Protocol Security Module Version11.3.0

F5 ≫ Big-ip Protocol Security Module Version11.4.0

F5 ≫ Big-ip Protocol Security Module Version11.4.1

F5 ≫ Big-ip Link Controller Version10.0.0

F5 ≫ Big-ip Link Controller Version10.0.1

F5 ≫ Big-ip Link Controller Version10.1.0

F5 ≫ Big-ip Link Controller Version10.2.0

F5 ≫ Big-ip Link Controller Version10.2.1

F5 ≫ Big-ip Link Controller Version10.2.2

F5 ≫ Big-ip Link Controller Version11.0.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.28%	0.778

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://secunia.com/advisories/55378

Vendor Advisory

http://support.f5.com/kb/en-us/solutions/public/13000/200/sol13233.html

Vendor Advisory

http://www.securitytracker.com/id/1029220

https://exchange.xforce.ibmcloud.com/vulnerabilities/88166

https://nvd.nist.gov/vuln/detail/CVE-2013-6016

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-6016

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-6016

EUVD