CVE-2018-5528
- EPSS 1.21%
- Veröffentlicht 27.06.2018 20:29:06
- Zuletzt bearbeitet 21.11.2024 04:09:00
Under certain conditions, TMM may restart and produce a core file while processing APM data on BIG-IP 13.0.1 or 13.1.0.4-13.1.0.7.
CVE-2018-5527
- EPSS 2.58%
- Veröffentlicht 27.06.2018 20:29:05
- Zuletzt bearbeitet 21.11.2024 04:09:00
On BIG-IP 13.1.0-13.1.0.7, a remote attacker using undisclosed methods against virtual servers configured with a Client SSL or Server SSL profile that has the SSL Forward Proxy feature enabled can force the Traffic Management Microkernel (tmm) to lea...
CVE-2017-6153
- EPSS 1.72%
- Veröffentlicht 01.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:29:09
Features in F5 BIG-IP 13.0.0-13.1.0.3, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 system that utilizes inflate functionality directly, via an iRule, or via the inflate code from PEM module are subjected to a service disruption via a "...
CVE-2018-5513
- EPSS 1.78%
- Veröffentlicht 01.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:57
On F5 BIG-IP 13.1.0-13.1.0.3, 13.0.0, 12.1.0-12.1.3.3, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1, a malformed TLS handshake causes TMM to crash leading to a disruption of service. This issue is only exposed on the data plane when Proxy SSL configurat...
CVE-2018-5521
- EPSS 0.92%
- Veröffentlicht 01.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:59
On F5 BIG-IP 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1, carefully crafted URLs can be used to reflect arbitrary content into GeoIP lookup responses, potentially exposing clients to XSS.
CVE-2018-5522
- EPSS 1.52%
- Veröffentlicht 01.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:59
On F5 BIG-IP 13.0.0, 12.0.0-12.1.2, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1, when processing DIAMETER transactions with carefully crafted attribute-value pairs, TMM may crash.
CVE-2018-5523
- EPSS 2.26%
- Veröffentlicht 01.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:59
On F5 BIG-IP 13.1.0-13.1.0.3, 13.0.0, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 and Enterprise Manager 3.1.1, when authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as t...
CVE-2018-5524
- EPSS 1.72%
- Veröffentlicht 01.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:59
Under certain conditions, on F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.1, or 11.6.1 HF2-11.6.3.1, virtual servers configured with Client SSL or Server SSL profiles which make use of network hardware security module (HSM) functionality are exposed and ...
CVE-2018-5525
- EPSS 1.01%
- Veröffentlicht 01.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:59
A local file vulnerability exists in the F5 BIG-IP Configuration utility on versions 13.0.0, 12.1.0-12.1.2, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 that exposes files containing F5-provided data only and do not include any configuration data, proxi...
CVE-2018-5512
- EPSS 3.02%
- Veröffentlicht 02.05.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:57
On F5 BIG-IP 13.1.0-13.1.0.5, when Large Receive Offload (LRO) and SYN cookies are enabled (default settings), undisclosed traffic patterns may cause TMM to restart.