Vulnerabilities > CVE-2018-5507 - Unspecified vulnerability in F5 products

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

nessus

NVD

Published: 2018-04-13

Updated: 2019-10-03

Summary

On F5 BIG-IP versions 13.0.0, 12.1.0-12.1.3.1, 11.6.1-11.6.2, or 11.5.1-11.5.5, vCMP guests running on VIPRION 2100, 4200 and 4300 series blades cannot correctly decrypt ciphertext from established SSL sessions with small MTU.

Vulnerable Configurations

Part	Description	Count
Application	F5 F5 BIG IP Local Traffic Manager 11.5.1 F5 BIG IP Local Traffic Manager 11.5.2 F5 BIG IP Local Traffic Manager 11.5.3 F5 BIG IP Local Traffic Manager 11.5.4 F5 BIG IP Local Traffic Manager 11.5.5 F5 BIG IP Local Traffic Manager 11.6.1 F5 BIG IP Local Traffic Manager 11.6.2 F5 BIG IP Local Traffic Manager 12.1.0 F5 BIG IP Local Traffic Manager 12.1.1 F5 BIG IP Local Traffic Manager 12.1.2 F5 BIG IP Local Traffic Manager 12.1.3 F5 BIG IP Local Traffic Manager 13.0.0 F5 BIG IP Application Acceleration Manager 11.5.1 F5 BIG IP Application Acceleration Manager 11.5.2 F5 BIG IP Application Acceleration Manager 11.5.3 F5 BIG IP Application Acceleration Manager 11.5.4 F5 BIG IP Application Acceleration Manager 11.5.5 F5 BIG IP Application Acceleration Manager 11.6.1 F5 BIG IP Application Acceleration Manager 11.6.2 F5 BIG IP Application Acceleration Manager 12.1.0 F5 BIG IP Application Acceleration Manager 12.1.1 F5 BIG IP Application Acceleration Manager 12.1.2 F5 BIG IP Application Acceleration Manager 12.1.3 F5 BIG IP Application Acceleration Manager 13.0.0 F5 BIG IP Advanced Firewall Manager 11.5.1 F5 BIG IP Advanced Firewall Manager 11.5.2 F5 BIG IP Advanced Firewall Manager 11.5.3 F5 BIG IP Advanced Firewall Manager 11.5.4 F5 BIG IP Advanced Firewall Manager 11.5.5 F5 BIG IP Advanced Firewall Manager 11.6.1 F5 BIG IP Advanced Firewall Manager 11.6.2 F5 BIG IP Advanced Firewall Manager 12.1.0 F5 BIG IP Advanced Firewall Manager 12.1.1 F5 BIG IP Advanced Firewall Manager 12.1.2 F5 BIG IP Advanced Firewall Manager 12.1.3 F5 BIG IP Advanced Firewall Manager 13.0.0 F5 BIG IP Analytics 11.5.1 F5 BIG IP Analytics 11.5.2 F5 BIG IP Analytics 11.5.3 F5 BIG IP Analytics 11.5.4 F5 BIG IP Analytics 11.5.5 F5 BIG IP Analytics 11.6.1 F5 BIG IP Analytics 11.6.2 F5 BIG IP Analytics 12.1.0 F5 BIG IP Analytics 12.1.1 F5 BIG IP Analytics 12.1.2 F5 BIG IP Analytics 12.1.3 F5 BIG IP Analytics 13.0.0 F5 BIG IP Access Policy Manager 11.5.1 F5 BIG IP Access Policy Manager 11.5.2 F5 BIG IP Access Policy Manager 11.5.3 F5 BIG IP Access Policy Manager 11.5.4 F5 BIG IP Access Policy Manager 11.5.5 F5 BIG IP Access Policy Manager 11.6.1 F5 BIG IP Access Policy Manager 11.6.2 F5 BIG IP Access Policy Manager 12.1.0 F5 BIG IP Access Policy Manager 12.1.1 F5 BIG IP Access Policy Manager 12.1.2 F5 BIG IP Access Policy Manager 12.1.3 F5 BIG IP Access Policy Manager 13.0.0 F5 BIG IP Application Security Manager 11.5.1 F5 BIG IP Application Security Manager 11.5.2 F5 BIG IP Application Security Manager 11.5.3 F5 BIG IP Application Security Manager 11.5.4 F5 BIG IP Application Security Manager 11.5.5 F5 BIG IP Application Security Manager 11.6.1 F5 BIG IP Application Security Manager 11.6.2 F5 BIG IP Application Security Manager 12.1.0 F5 BIG IP Application Security Manager 12.1.1 F5 BIG IP Application Security Manager 12.1.2 F5 BIG IP Application Security Manager 12.1.3 F5 BIG IP Application Security Manager 13.0.0 F5 BIG IP Edge Gateway 11.5.1 F5 BIG IP Edge Gateway 11.5.2 F5 BIG IP Edge Gateway 11.5.3 F5 BIG IP Edge Gateway 11.5.4 F5 BIG IP Edge Gateway 11.5.5 F5 BIG IP Edge Gateway 11.6.1 F5 BIG IP Edge Gateway 11.6.2 F5 BIG IP Edge Gateway 12.1.0 F5 BIG IP Edge Gateway 12.1.1 F5 BIG IP Edge Gateway 12.1.2 F5 BIG IP Edge Gateway 12.1.3 F5 BIG IP Edge Gateway 13.0.0 F5 BIG IP Global Traffic Manager 11.5.1 F5 BIG IP Global Traffic Manager 11.5.2 F5 BIG IP Global Traffic Manager 11.5.3 F5 BIG IP Global Traffic Manager 11.5.4 F5 BIG IP Global Traffic Manager 11.5.5 F5 BIG IP Global Traffic Manager 11.6.1 F5 BIG IP Global Traffic Manager 11.6.2 F5 BIG IP Global Traffic Manager 12.1.0 F5 BIG IP Global Traffic Manager 12.1.1 F5 BIG IP Global Traffic Manager 12.1.2 F5 BIG IP Global Traffic Manager 12.1.3 F5 BIG IP Global Traffic Manager 13.0.0 F5 BIG IP Link Controller 11.5.1 F5 BIG IP Link Controller 11.5.2 F5 BIG IP Link Controller 11.5.3 F5 BIG IP Link Controller 11.5.4 F5 BIG IP Link Controller 11.5.5 F5 BIG IP Link Controller 11.6.1 F5 BIG IP Link Controller 11.6.2 F5 BIG IP Link Controller 12.1.0 F5 BIG IP Link Controller 12.1.1 F5 BIG IP Link Controller 12.1.2 F5 BIG IP Link Controller 12.1.3 F5 BIG IP Link Controller 13.0.0 F5 BIG IP Policy Enforcement Manager 11.5.1 F5 BIG IP Policy Enforcement Manager 11.5.2 F5 BIG IP Policy Enforcement Manager 11.5.3 F5 BIG IP Policy Enforcement Manager 11.5.4 F5 BIG IP Policy Enforcement Manager 11.5.5 F5 BIG IP Policy Enforcement Manager 11.6.1 F5 BIG IP Policy Enforcement Manager 11.6.2 F5 BIG IP Policy Enforcement Manager 12.1.0 F5 BIG IP Policy Enforcement Manager 12.1.1 F5 BIG IP Policy Enforcement Manager 12.1.2 F5 BIG IP Policy Enforcement Manager 12.1.3 F5 BIG IP Policy Enforcement Manager 13.0.0 F5 BIG IP Webaccelerator 11.5.1 F5 BIG IP Webaccelerator 11.5.2 F5 BIG IP Webaccelerator 11.5.3 F5 BIG IP Webaccelerator 11.5.4 F5 BIG IP Webaccelerator 11.5.5 F5 BIG IP Webaccelerator 11.6.1 F5 BIG IP Webaccelerator 11.6.2 F5 BIG IP Webaccelerator 12.1.0 F5 BIG IP Webaccelerator 12.1.1 F5 BIG IP Webaccelerator 12.1.2 F5 BIG IP Webaccelerator 12.1.3 F5 BIG IP Webaccelerator 13.0.0 F5 BIG IP Websafe 11.5.1 F5 BIG IP Websafe 11.5.2 F5 BIG IP Websafe 11.5.3 F5 BIG IP Websafe 11.5.4 F5 BIG IP Websafe 11.5.5 F5 BIG IP Websafe 11.6.1 F5 BIG IP Websafe 12.1.0 F5 BIG IP Websafe 12.1.1 F5 BIG IP Websafe 12.1.2 F5 BIG IP Websafe 13.0.0 F5 BIG IP Domain Name System 11.5.1 F5 BIG IP Domain Name System 11.5.2 F5 BIG IP Domain Name System 11.5.3 F5 BIG IP Domain Name System 11.5.4 F5 BIG IP Domain Name System 11.5.5 F5 BIG IP Domain Name System 11.6.1 F5 BIG IP Domain Name System 11.6.2 F5 BIG IP Domain Name System 12.1.0 F5 BIG IP Domain Name System 12.1.1 F5 BIG IP Domain Name System 12.1.2 F5 BIG IP Domain Name System 12.1.3 F5 BIG IP Domain Name System 13.0.0	193
Hardware	F5 F5 Viprion 2100 Blades - F5 Viprion 4200 Blades - F5 Viprion 4300 Blades -	3

Nessus

NASL family	F5 Networks Local Security Checks
NASL id	F5_BIGIP_SOL52521791.NASL
description	vCMP guests running on VIPRION 2100, 4200 and 4300 series blades cannot correctly decrypt ciphertext from established SSL sessions with small MTU. (CVE-2018-5507) Impact BIG-IP The affected SSL connections are terminated unexpectedly. ARX / BIG-IQ / Enterprise Manager / F5 iWorkflow / LineRate / Traffix SDC There is no impact; these F5 products are not affected by this vulnerability.
last seen	2020-03-17
modified	2018-11-02
plugin id	118679
published	2018-11-02
reporter	This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/118679
title	F5 Networks BIG-IP : vCMP Cavium Nitrox SSL hardware accelerator vulnerability (K52521791)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from F5 Networks BIG-IP Solution K52521791. # # The text description of this plugin is (C) F5 Networks. # include("compat.inc"); if (description) { script_id(118679); script_version("1.4"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/03/09"); script_cve_id("CVE-2018-5507"); script_name(english:"F5 Networks BIG-IP : vCMP Cavium Nitrox SSL hardware accelerator vulnerability (K52521791)"); script_summary(english:"Checks the BIG-IP version."); script_set_attribute( attribute:"synopsis", value:"The remote device is missing a vendor-supplied security patch." ); script_set_attribute( attribute:"description", value: "vCMP guests running on VIPRION 2100, 4200 and 4300 series blades cannot correctly decrypt ciphertext from established SSL sessions with small MTU. (CVE-2018-5507) Impact BIG-IP The affected SSL connections are terminated unexpectedly. ARX / BIG-IQ / Enterprise Manager / F5 iWorkflow / LineRate / Traffix SDC There is no impact; these F5 products are not affected by this vulnerability." ); script_set_attribute( attribute:"see_also", value:"https://support.f5.com/csp/article/K52521791" ); script_set_attribute( attribute:"solution", value: "Upgrade to one of the non-vulnerable versions listed in the F5 Solution K52521791." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_access_policy_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_advanced_firewall_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_acceleration_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_security_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_visibility_and_reporting"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_global_traffic_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_link_controller"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_local_traffic_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_policy_enforcement_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_webaccelerator"); script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip"); script_set_attribute(attribute:"vuln_publication_date", value:"2018/04/13"); script_set_attribute(attribute:"patch_publication_date", value:"2018/04/12"); script_set_attribute(attribute:"plugin_publication_date", value:"2018/11/02"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"F5 Networks Local Security Checks"); script_dependencies("f5_bigip_detect.nbin"); script_require_keys("Host/local_checks_enabled", "Host/BIG-IP/hotfix", "Host/BIG-IP/modules", "Host/BIG-IP/version"); exit(0); } include("f5_func.inc"); if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); version = get_kb_item("Host/BIG-IP/version"); if ( ! version ) audit(AUDIT_OS_NOT, "F5 Networks BIG-IP"); if ( isnull(get_kb_item("Host/BIG-IP/hotfix")) ) audit(AUDIT_KB_MISSING, "Host/BIG-IP/hotfix"); if ( ! get_kb_item("Host/BIG-IP/modules") ) audit(AUDIT_KB_MISSING, "Host/BIG-IP/modules"); sol = "K52521791"; vmatrix = make_array(); # AFM vmatrix["AFM"] = make_array(); vmatrix["AFM"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["AFM"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # AM vmatrix["AM"] = make_array(); vmatrix["AM"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["AM"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # APM vmatrix["APM"] = make_array(); vmatrix["APM"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["APM"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # ASM vmatrix["ASM"] = make_array(); vmatrix["ASM"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["ASM"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # AVR vmatrix["AVR"] = make_array(); vmatrix["AVR"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["AVR"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # GTM vmatrix["GTM"] = make_array(); vmatrix["GTM"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["GTM"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # LC vmatrix["LC"] = make_array(); vmatrix["LC"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["LC"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # LTM vmatrix["LTM"] = make_array(); vmatrix["LTM"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["LTM"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # PEM vmatrix["PEM"] = make_array(); vmatrix["PEM"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["PEM"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); # WAM vmatrix["WAM"] = make_array(); vmatrix["WAM"]["affected" ] = make_list("13.0.0","12.1.0-12.1.3","11.6.1-11.6.2","11.5.1-11.5.5"); vmatrix["WAM"]["unaffected"] = make_list("13.1.0","13.0.1","12.1.3.2","11.6.3","11.5.6"); if (bigip_is_affected(vmatrix:vmatrix, sol:sol)) { if (report_verbosity > 0) security_warning(port:0, extra:bigip_report_get()); else security_warning(0); exit(0); } else { tested = bigip_get_tested_modules(); audit_extra = "For BIG-IP module(s) " + tested + ","; if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version); else audit(AUDIT_HOST_NOT, "running any of the affected modules"); }

References

https://support.f5.com/csp/article/K52521791