Vulnerabilities > CVE-2018-15320 - Unspecified vulnerability in F5 products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

nessus

NVD

Published: 2018-10-31

Updated: 2019-10-03

Summary

On BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, undisclosed traffic patterns may lead to denial of service conditions for the BIG-IP system. The configuration which exposes this condition is the BIG-IP self IP address which is part of a VLAN group and has the Port Lockdown setting configured with anything other than "allow-all".

Vulnerable Configurations

Part	Description	Count
Application	F5 F5 BIG IP Local Traffic Manager 13.0.0 F5 BIG IP Local Traffic Manager 13.0.1 F5 BIG IP Local Traffic Manager 13.1.0 F5 BIG IP Local Traffic Manager 13.1.0.0 F5 BIG IP Local Traffic Manager 13.1.0.1 F5 BIG IP Local Traffic Manager 13.1.0.2 F5 BIG IP Local Traffic Manager 13.1.0.3 F5 BIG IP Local Traffic Manager 13.1.0.4 F5 BIG IP Local Traffic Manager 13.1.0.5 F5 BIG IP Local Traffic Manager 13.1.0.6 F5 BIG IP Local Traffic Manager 13.1.0.7 F5 BIG IP Local Traffic Manager 13.1.0.8 F5 BIG IP Local Traffic Manager 13.1.1 F5 BIG IP Local Traffic Manager 13.1.1.1 F5 BIG IP Local Traffic Manager 14.0.0 F5 BIG IP Local Traffic Manager 14.0.0.2 F5 BIG IP Advanced Firewall Manager 13.0.0 F5 BIG IP Advanced Firewall Manager 13.0.1 F5 BIG IP Advanced Firewall Manager 13.1.0 F5 BIG IP Advanced Firewall Manager 13.1.0.0 F5 BIG IP Advanced Firewall Manager 13.1.0.1 F5 BIG IP Advanced Firewall Manager 13.1.0.2 F5 BIG IP Advanced Firewall Manager 13.1.0.3 F5 BIG IP Advanced Firewall Manager 13.1.0.4 F5 BIG IP Advanced Firewall Manager 13.1.0.5 F5 BIG IP Advanced Firewall Manager 13.1.0.6 F5 BIG IP Advanced Firewall Manager 13.1.0.7 F5 BIG IP Advanced Firewall Manager 13.1.0.8 F5 BIG IP Advanced Firewall Manager 13.1.1 F5 BIG IP Advanced Firewall Manager 13.1.1.1 F5 BIG IP Advanced Firewall Manager 14.0.0 F5 BIG IP Advanced Firewall Manager 14.0.0.1 F5 BIG IP Advanced Firewall Manager 14.0.0.2 F5 BIG IP Application Acceleration Manager 13.0.0 F5 BIG IP Application Acceleration Manager 13.0.1 F5 BIG IP Application Acceleration Manager 13.1.0 F5 BIG IP Application Acceleration Manager 13.1.0.0 F5 BIG IP Application Acceleration Manager 13.1.0.1 F5 BIG IP Application Acceleration Manager 13.1.0.2 F5 BIG IP Application Acceleration Manager 13.1.0.3 F5 BIG IP Application Acceleration Manager 13.1.0.4 F5 BIG IP Application Acceleration Manager 13.1.0.5 F5 BIG IP Application Acceleration Manager 13.1.0.6 F5 BIG IP Application Acceleration Manager 13.1.0.7 F5 BIG IP Application Acceleration Manager 13.1.0.8 F5 BIG IP Application Acceleration Manager 13.1.1 F5 BIG IP Application Acceleration Manager 14.0.0 F5 BIG IP Application Acceleration Manager 14.0.0.1 F5 BIG IP Application Acceleration Manager 14.0.0.2 F5 BIG IP Analytics 13.0.0 F5 BIG IP Analytics 13.0.1 F5 BIG IP Analytics 13.1.0 F5 BIG IP Analytics 13.1.0.0 F5 BIG IP Analytics 13.1.0.1 F5 BIG IP Analytics 13.1.0.2 F5 BIG IP Analytics 13.1.0.3 F5 BIG IP Analytics 13.1.0.4 F5 BIG IP Analytics 13.1.0.5 F5 BIG IP Analytics 13.1.0.6 F5 BIG IP Analytics 13.1.0.7 F5 BIG IP Analytics 13.1.0.8 F5 BIG IP Analytics 13.1.1 F5 BIG IP Analytics 13.1.1.1 F5 BIG IP Analytics 14.0.0 F5 BIG IP Analytics 14.0.0.1 F5 BIG IP Analytics 14.0.0.2 F5 BIG IP Access Policy Manager 13.0.0 F5 BIG IP Access Policy Manager 13.0.0.0 F5 BIG IP Access Policy Manager 13.0.1 F5 BIG IP Access Policy Manager 13.1.0 F5 BIG IP Access Policy Manager 13.1.0.1 F5 BIG IP Access Policy Manager 13.1.0.2 F5 BIG IP Access Policy Manager 13.1.0.3 F5 BIG IP Access Policy Manager 13.1.0.4 F5 BIG IP Access Policy Manager 13.1.0.5 F5 BIG IP Access Policy Manager 13.1.0.6 F5 BIG IP Access Policy Manager 13.1.0.7 F5 BIG IP Access Policy Manager 13.1.0.8 F5 BIG IP Access Policy Manager 13.1.1 F5 BIG IP Access Policy Manager 13.1.1.1 F5 BIG IP Access Policy Manager 14.0.0 F5 BIG IP Access Policy Manager 14.0.0.2 F5 BIG IP Protocol Security Module 13.0.0 F5 BIG IP Protocol Security Module 13.1.1 F5 BIG IP Protocol Security Module 13.1.1.1 F5 BIG IP Protocol Security Module 14.0.0 F5 BIG IP Protocol Security Module 14.0.0.2 F5 BIG IP Domain Name System 13.0.0 F5 BIG IP Domain Name System 13.0.1 F5 BIG IP Domain Name System 13.1.0 F5 BIG IP Domain Name System 13.1.0.0 F5 BIG IP Domain Name System 13.1.0.1 F5 BIG IP Domain Name System 13.1.0.2 F5 BIG IP Domain Name System 13.1.0.3 F5 BIG IP Domain Name System 13.1.0.4 F5 BIG IP Domain Name System 13.1.0.5 F5 BIG IP Domain Name System 13.1.0.6 F5 BIG IP Domain Name System 13.1.0.7 F5 BIG IP Domain Name System 13.1.0.8 F5 BIG IP Domain Name System 13.1.1 F5 BIG IP Domain Name System 13.1.1.1 F5 BIG IP Domain Name System 14.0.0 F5 BIG IP Domain Name System 14.0.0.1 F5 BIG IP Domain Name System 14.0.0.2 F5 BIG IP Edge Gateway 13.0.0 F5 BIG IP Edge Gateway 13.0.1 F5 BIG IP Edge Gateway 13.1.0 F5 BIG IP Edge Gateway 13.1.0.0 F5 BIG IP Edge Gateway 13.1.0.1 F5 BIG IP Edge Gateway 13.1.0.2 F5 BIG IP Edge Gateway 13.1.0.3 F5 BIG IP Edge Gateway 13.1.0.4 F5 BIG IP Edge Gateway 13.1.0.5 F5 BIG IP Edge Gateway 13.1.0.6 F5 BIG IP Edge Gateway 13.1.0.7 F5 BIG IP Edge Gateway 13.1.0.8 F5 BIG IP Edge Gateway 13.1.1 F5 BIG IP Edge Gateway 13.1.1.1 F5 BIG IP Edge Gateway 14.0.0 F5 BIG IP Edge Gateway 14.0.0.1 F5 BIG IP Edge Gateway 14.0.0.2 F5 BIG IP Fraud Protection Service 13.0.0 F5 BIG IP Fraud Protection Service 13.0.1 F5 BIG IP Fraud Protection Service 13.1.0 F5 BIG IP Fraud Protection Service 13.1.0.0 F5 BIG IP Fraud Protection Service 13.1.0.1 F5 BIG IP Fraud Protection Service 13.1.0.2 F5 BIG IP Fraud Protection Service 13.1.0.3 F5 BIG IP Fraud Protection Service 13.1.0.4 F5 BIG IP Fraud Protection Service 13.1.0.5 F5 BIG IP Fraud Protection Service 13.1.0.6 F5 BIG IP Fraud Protection Service 13.1.0.7 F5 BIG IP Fraud Protection Service 13.1.0.8 F5 BIG IP Fraud Protection Service 13.1.1 F5 BIG IP Fraud Protection Service 13.1.1.1 F5 BIG IP Fraud Protection Service 14.0.0 F5 BIG IP Fraud Protection Service 14.0.0.1 F5 BIG IP Fraud Protection Service 14.0.0.2 F5 BIG IP Global Traffic Manager 13.0.0 F5 BIG IP Global Traffic Manager 13.0.1 F5 BIG IP Global Traffic Manager 13.1.0 F5 BIG IP Global Traffic Manager 13.1.0.0 F5 BIG IP Global Traffic Manager 13.1.0.1 F5 BIG IP Global Traffic Manager 13.1.0.2 F5 BIG IP Global Traffic Manager 13.1.0.3 F5 BIG IP Global Traffic Manager 13.1.0.4 F5 BIG IP Global Traffic Manager 13.1.0.5 F5 BIG IP Global Traffic Manager 13.1.0.6 F5 BIG IP Global Traffic Manager 13.1.0.7 F5 BIG IP Global Traffic Manager 13.1.0.8 F5 BIG IP Global Traffic Manager 13.1.1 F5 BIG IP Global Traffic Manager 13.1.1.1 F5 BIG IP Global Traffic Manager 14.0.0 F5 BIG IP Global Traffic Manager 14.0.0.1 F5 BIG IP Global Traffic Manager 14.0.0.2 F5 BIG IP Link Controller 13.0.0 F5 BIG IP Link Controller 13.0.1 F5 BIG IP Link Controller 13.1.0 F5 BIG IP Link Controller 13.1.0.0 F5 BIG IP Link Controller 13.1.0.1 F5 BIG IP Link Controller 13.1.0.2 F5 BIG IP Link Controller 13.1.0.3 F5 BIG IP Link Controller 13.1.0.4 F5 BIG IP Link Controller 13.1.0.5 F5 BIG IP Link Controller 13.1.0.6 F5 BIG IP Link Controller 13.1.0.7 F5 BIG IP Link Controller 13.1.0.8 F5 BIG IP Link Controller 13.1.1 F5 BIG IP Link Controller 13.1.1.1 F5 BIG IP Link Controller 14.0.0 F5 BIG IP Link Controller 14.0.0.1 F5 BIG IP Link Controller 14.0.0.2 F5 BIG IP Policy Enforcement Manager 13.0.0 F5 BIG IP Policy Enforcement Manager 13.0.1 F5 BIG IP Policy Enforcement Manager 13.1.0 F5 BIG IP Policy Enforcement Manager 13.1.0.0 F5 BIG IP Policy Enforcement Manager 13.1.0.1 F5 BIG IP Policy Enforcement Manager 13.1.0.2 F5 BIG IP Policy Enforcement Manager 13.1.0.3 F5 BIG IP Policy Enforcement Manager 13.1.0.4 F5 BIG IP Policy Enforcement Manager 13.1.0.5 F5 BIG IP Policy Enforcement Manager 13.1.0.6 F5 BIG IP Policy Enforcement Manager 13.1.0.7 F5 BIG IP Policy Enforcement Manager 13.1.0.8 F5 BIG IP Policy Enforcement Manager 13.1.1 F5 BIG IP Policy Enforcement Manager 13.1.1.1 F5 BIG IP Policy Enforcement Manager 14.0.0 F5 BIG IP Policy Enforcement Manager 14.0.0.1 F5 BIG IP Policy Enforcement Manager 14.0.0.2 F5 BIG IP Webaccelerator 13.0.0 F5 BIG IP Webaccelerator 13.0.1 F5 BIG IP Webaccelerator 13.1.0 F5 BIG IP Webaccelerator 13.1.0.0 F5 BIG IP Webaccelerator 13.1.0.1 F5 BIG IP Webaccelerator 13.1.0.2 F5 BIG IP Webaccelerator 13.1.0.3 F5 BIG IP Webaccelerator 13.1.0.4 F5 BIG IP Webaccelerator 13.1.0.5 F5 BIG IP Webaccelerator 13.1.0.6 F5 BIG IP Webaccelerator 13.1.0.7 F5 BIG IP Webaccelerator 13.1.0.8 F5 BIG IP Webaccelerator 13.1.1 F5 BIG IP Webaccelerator 13.1.1.1 F5 BIG IP Webaccelerator 14.0.0 F5 BIG IP Webaccelerator 14.0.0.1 F5 BIG IP Webaccelerator 14.0.0.2	269

Nessus

NASL family	F5 Networks Local Security Checks
NASL id	F5_BIGIP_SOL72442354.NASL
description	Undisclosed traffic patterns may lead to denial of service conditions for the BIG-IP system. The configuration which exposes this condition is the BIG-IP self IP address which is part of a VLAN group and has the Port Lockdown setting configured with anything other than
last seen	2020-06-01
modified	2020-06-02
plugin id	118695
published	2018-11-02
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/118695
title	F5 Networks BIG-IP : TMM vulnerability (K72442354)

References

https://support.f5.com/csp/article/K72442354