CVE-2018-15311 - Vulnerability Details

Vendors	Products
F5	Big-ip Access Policy Manager Big-ip Advanced Firewall Manager Big-ip Analytics Big-ip Application Acceleration Manager Big-ip Application Security Manager Big-ip Domain Name System Big-ip Edge Gateway Big-ip Fraud Protection Service Big-ip Global Traffic Manager Big-ip Link Controller Big-ip Local Traffic Manager Big-ip Policy Enforcement Manager Big-ip Webaccelerator

Link	Providers
https://support.f5.com/csp/article/K07550539

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator)", "vendor": "F5 Networks, Inc.", "versions": [{"status": "affected", "version": "13.0.0-13.1.0.5"}, {"status": "affected", "version": "12.1.0-12.1.3.5"}, {"status": "affected", "version": "11.6.0-11.6.3.2"}, {"status": "affected", "version": "11.5.1-11.5.6"}]}], "datePublic": "2018-10-09T00:00:00", "descriptions": [{"lang": "en", "value": "When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.5.1-11.5.6 is processing specially crafted TCP traffic with the Large Receive Offload (LRO) feature enabled, TMM may crash, leading to a failover event. This vulnerability is not exposed unless LRO is enabled, so most affected customers will be on 13.1.x. LRO has been available since 11.4.0 but is not enabled by default until 13.1.0."}], "problemTypes": [{"descriptions": [{"description": "DoS", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-10T13:57:01", "orgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab", "shortName": "f5"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://support.f5.com/csp/article/K07550539"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "f5sirt@f5.com", "DATE_PUBLIC": "2018-10-09T00:00:00", "ID": "CVE-2018-15311", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator)", "version": {"version_data": [{"version_value": "13.0.0-13.1.0.5"}, {"version_value": "12.1.0-12.1.3.5"}, {"version_value": "11.6.0-11.6.3.2"}, {"version_value": "11.5.1-11.5.6"}]}}]}, "vendor_name": "F5 Networks, Inc."}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.5.1-11.5.6 is processing specially crafted TCP traffic with the Large Receive Offload (LRO) feature enabled, TMM may crash, leading to a failover event. This vulnerability is not exposed unless LRO is enabled, so most affected customers will be on 13.1.x. LRO has been available since 11.4.0 but is not enabled by default until 13.1.0."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "DoS"}]}]}, "references": {"reference_data": [{"name": "https://support.f5.com/csp/article/K07550539", "refsource": "CONFIRM", "url": "https://support.f5.com/csp/article/K07550539"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T09:46:25.456Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.f5.com/csp/article/K07550539"}]}]}, "cveMetadata": {"assignerOrgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab", "assignerShortName": "f5", "cveId": "CVE-2018-15311", "datePublished": "2018-10-10T14:00:00Z", "dateReserved": "2018-08-14T00:00:00", "dateUpdated": "2024-09-16T23:05:47.499Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) (string)

vendor : F5 Networks, Inc. (string)

versions : [ »

0 : { »

status : affected (string)

version : 13.0.0-13.1.0.5 (string)

}

1 : { »

status : affected (string)

version : 12.1.0-12.1.3.5 (string)

}

2 : { »

status : affected (string)

version : 11.6.0-11.6.3.2 (string)

}

3 : { »

status : affected (string)

version : 11.5.1-11.5.6 (string)

}

]

}

]

datePublic : 2018-10-09T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.5.1-11.5.6 is processing specially crafted TCP traffic with the Large Receive Offload (LRO) feature enabled, TMM may crash, leading to a failover event. This vulnerability is not exposed unless LRO is enabled, so most affected customers will be on 13.1.x. LRO has been available since 11.4.0 but is not enabled by default until 13.1.0. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : DoS (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2018-10-10T13:57:01 (string)

orgId : 9dacffd4-cb11-413f-8451-fbbfd4ddc0ab (string)

shortName : f5 (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : https://support.f5.com/csp/article/K07550539 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : f5sirt@f5.com (string)

DATE_PUBLIC : 2018-10-09T00:00:00 (string)

ID : CVE-2018-15311 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) (string)

version : { »

version_data : [ »

0 : { »

version_value : 13.0.0-13.1.0.5 (string)

}

1 : { »

version_value : 12.1.0-12.1.3.5 (string)

}

2 : { »

version_value : 11.6.0-11.6.3.2 (string)

}

3 : { »

version_value : 11.5.1-11.5.6 (string)

}

]

}

]

}

vendor_name : F5 Networks, Inc. (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.5.1-11.5.6 is processing specially crafted TCP traffic with the Large Receive Offload (LRO) feature enabled, TMM may crash, leading to a failover event. This vulnerability is not exposed unless LRO is enabled, so most affected customers will be on 13.1.x. LRO has been available since 11.4.0 but is not enabled by default until 13.1.0. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : DoS (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://support.f5.com/csp/article/K07550539 (string)

refsource : CONFIRM (string)

url : https://support.f5.com/csp/article/K07550539 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-05T09:46:25.456Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : https://support.f5.com/csp/article/K07550539 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 9dacffd4-cb11-413f-8451-fbbfd4ddc0ab (string)

assignerShortName : f5 (string)

cveId : CVE-2018-15311 (string)

datePublished : 2018-10-10T14:00:00Z (string)

dateReserved : 2018-08-14T00:00:00 (string)

dateUpdated : 2024-09-16T23:05:47.499Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "964FF00B-F992-4FE1-BEAD-BC072BC60BFF", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "F7ECF570-49EC-4F48-9CE7-6E3710DDC516", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "187CB06B-9BE0-4E3A-9182-69546BBB8826", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "B3BD36AA-CC4A-4082-BF64-28521DDECCDA", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "CD6A2E89-7115-4EB1-88B9-7DEF5F2FBEB7", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "E5DCBDE3-F238-44B3-AB63-1299922FAFDD", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "C1D5EEA1-FC7F-460D-96ED-FD9763613B45", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "D9B21E2C-4CAB-43D8-A462-FFB0B72483D7", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "568E18F9-1A18-4BAD-9C20-60CB70B5D0C1", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "34651AA8-FC50-4B94-B5E7-1727D282BAAF", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "5CD5ED95-8082-460D-85B4-3D3937BE97A0", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "85368A20-7168-4C1A-BE6F-F80BA96A4159", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "matchCriteriaId": "077633A7-B626-4C22-B492-ABD50B7F78B6", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "matchCriteriaId": "165087E0-EA37-478D-821E-70AB0528CF9F", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "matchCriteriaId": "7F6FFF4D-C952-4F56-A626-E82AF93B30C3", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "matchCriteriaId": "6AF8D490-E6FB-41BD-BA2D-B71BED1E7FED", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "4DE7E7F2-2026-4407-8F0E-168DE0D4F935", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "A259A682-12B2-4BEA-A367-C71EAC3F887B", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "6F0A5D75-40BB-4D45-8B02-B29C1563D996", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "96E0DD20-1AC3-41CF-9057-489019A439E0", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "90EC6DF6-A7DF-4A1C-9D2F-C02EDB5FFCF2", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "77AD6CB0-EF75-4A8A-95B7-988B6B041D49", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "DA9400A8-7B8E-477B-AF65-E22790B742A9", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "C1D049B4-0304-403A-8EE1-3311044EFF7B", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "matchCriteriaId": "B719583F-D2FE-4F29-9FC2-613F979737E6", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "matchCriteriaId": "032274E7-5DB3-4531-B72C-95A024C191B0", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "matchCriteriaId": "22A865A3-489B-4FBA-BD1E-4DD4FD34DB47", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "matchCriteriaId": "3D4649CB-EE59-4926-BAE9-F6B8ADE110C5", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "7C8C72E9-69FA-472D-B73F-BB681D0FA108", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "7D1F7BB6-3BF1-4C9A-9F43-9FBD0879B32E", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "541E39AA-D46E-49B5-9D6B-3CF4EC0347AA", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "006E2FB7-4BFB-4CF8-A880-A4E00FA1DEA5", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "matchCriteriaId": "01164131-51C1-4BAA-BE0C-331E6F604953", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "matchCriteriaId": "55476ABD-8CC9-49A4-8F20-67D214B7D239", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "matchCriteriaId": "A4FBA271-A0EA-4393-A10A-04402B9B4A71", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "matchCriteriaId": "1BF721DE-B2C3-4195-B456-D269B909C284", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "B9F34B4F-BA2F-45D9-B2EB-B9196BD6CDF7", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "42B81482-D866-45DB-8210-F90F9B11FFD1", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "3600BB17-98D0-4B81-A148-1864B1F229E3", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "087D3C0E-886A-4C4D-A6B5-A5EDEBDEF457", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "2DEDF1CC-3C5A-4F4C-A910-11DD6C0C1739", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "D8257FEF-CF33-4459-B6F6-ECC390852987", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "71FC8582-ED48-4C8F-A3AB-0744FFA319E5", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "0D45AB00-2C55-41F5-BAB3-6DA23C86F5BB", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "53427258-7EE1-4827-9D51-C72026D5942F", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "D3464E75-D419-4D3E-89EE-3BE571A388F4", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "AEF7AC47-D128-4282-846B-4408B12AAC09", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "A97847E9-D6BB-4EA9-9CED-1FA868B35B94", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*", "matchCriteriaId": "25E4F494-73FC-4755-9946-1C631F7C3640", "versionEndIncluding": "11.5.6", "versionStartIncluding": "11.5.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*", "matchCriteriaId": "15044BE6-FEC9-4325-9EA1-0665FF5F7C36", "versionEndIncluding": "11.6.3.2", "versionStartIncluding": "11.6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*", "matchCriteriaId": "1869E130-99D1-4E15-8BF7-275EF9A20D7F", "versionEndIncluding": "12.1.3.5", "versionStartIncluding": "12.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*", "matchCriteriaId": "0E88E927-3C8E-481A-9447-00082BD73601", "versionEndIncluding": "13.1.0.5", "versionStartIncluding": "13.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.5.1-11.5.6 is processing specially crafted TCP traffic with the Large Receive Offload (LRO) feature enabled, TMM may crash, leading to a failover event. This vulnerability is not exposed unless LRO is enabled, so most affected customers will be on 13.1.x. LRO has been available since 11.4.0 but is not enabled by default until 13.1.0."}, {"lang": "es", "value": "Cuando F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2 o 11.5.1-11.5.6 est\u00e1 procesando tr\u00e1fico TCP especialmente manipulado con la caracter\u00edstica Large Receive Offload (LRO) habilitada, TMM podr\u00eda cerrarse inesperadamente, conduciendo a un evento \"failover\". Esta vulnerabilidad no est\u00e1 expuesta a menos que LRO est\u00e9 habilitado, por lo que la mayor parte de clientes afectados estar\u00e1n en las versiones 13.1.x. LRO ha estado disponible desde la versi\u00f3n 11.4.0, pero no est\u00e1 habilitada por defecto hasta la versi\u00f3n 13.1.0."}], "id": "CVE-2018-15311", "lastModified": "2024-11-21T03:50:31.993", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-10-10T14:29:00.387", "references": [{"source": "f5sirt@f5.com", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://support.f5.com/csp/article/K07550539"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://support.f5.com/csp/article/K07550539"}], "sourceIdentifier": "f5sirt@f5.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 964FF00B-F992-4FE1-BEAD-BC072BC60BFF (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : F7ECF570-49EC-4F48-9CE7-6E3710DDC516 (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 187CB06B-9BE0-4E3A-9182-69546BBB8826 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B3BD36AA-CC4A-4082-BF64-28521DDECCDA (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : CD6A2E89-7115-4EB1-88B9-7DEF5F2FBEB7 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : E5DCBDE3-F238-44B3-AB63-1299922FAFDD (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : C1D5EEA1-FC7F-460D-96ED-FD9763613B45 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : D9B21E2C-4CAB-43D8-A462-FFB0B72483D7 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 568E18F9-1A18-4BAD-9C20-60CB70B5D0C1 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 34651AA8-FC50-4B94-B5E7-1727D282BAAF (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 5CD5ED95-8082-460D-85B4-3D3937BE97A0 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 85368A20-7168-4C1A-BE6F-F80BA96A4159 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

3 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 077633A7-B626-4C22-B492-ABD50B7F78B6 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 165087E0-EA37-478D-821E-70AB0528CF9F (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7F6FFF4D-C952-4F56-A626-E82AF93B30C3 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 6AF8D490-E6FB-41BD-BA2D-B71BED1E7FED (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

4 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 4DE7E7F2-2026-4407-8F0E-168DE0D4F935 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : A259A682-12B2-4BEA-A367-C71EAC3F887B (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 6F0A5D75-40BB-4D45-8B02-B29C1563D996 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 96E0DD20-1AC3-41CF-9057-489019A439E0 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

5 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 90EC6DF6-A7DF-4A1C-9D2F-C02EDB5FFCF2 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 77AD6CB0-EF75-4A8A-95B7-988B6B041D49 (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : DA9400A8-7B8E-477B-AF65-E22790B742A9 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : C1D049B4-0304-403A-8EE1-3311044EFF7B (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

6 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B719583F-D2FE-4F29-9FC2-613F979737E6 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 032274E7-5DB3-4531-B72C-95A024C191B0 (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 22A865A3-489B-4FBA-BD1E-4DD4FD34DB47 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 3D4649CB-EE59-4926-BAE9-F6B8ADE110C5 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

7 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7C8C72E9-69FA-472D-B73F-BB681D0FA108 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7D1F7BB6-3BF1-4C9A-9F43-9FBD0879B32E (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 541E39AA-D46E-49B5-9D6B-3CF4EC0347AA (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 006E2FB7-4BFB-4CF8-A880-A4E00FA1DEA5 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

8 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 01164131-51C1-4BAA-BE0C-331E6F604953 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 55476ABD-8CC9-49A4-8F20-67D214B7D239 (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:* (string)

matchCriteriaId : A4FBA271-A0EA-4393-A10A-04402B9B4A71 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 1BF721DE-B2C3-4195-B456-D269B909C284 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

9 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B9F34B4F-BA2F-45D9-B2EB-B9196BD6CDF7 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 42B81482-D866-45DB-8210-F90F9B11FFD1 (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 3600BB17-98D0-4B81-A148-1864B1F229E3 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 087D3C0E-886A-4C4D-A6B5-A5EDEBDEF457 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

10 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 2DEDF1CC-3C5A-4F4C-A910-11DD6C0C1739 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:* (string)

matchCriteriaId : D8257FEF-CF33-4459-B6F6-ECC390852987 (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 71FC8582-ED48-4C8F-A3AB-0744FFA319E5 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 0D45AB00-2C55-41F5-BAB3-6DA23C86F5BB (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

11 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 53427258-7EE1-4827-9D51-C72026D5942F (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : D3464E75-D419-4D3E-89EE-3BE571A388F4 (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : AEF7AC47-D128-4282-846B-4408B12AAC09 (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:* (string)

matchCriteriaId : A97847E9-D6BB-4EA9-9CED-1FA868B35B94 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

12 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 25E4F494-73FC-4755-9946-1C631F7C3640 (string)

versionEndIncluding : 11.5.6 (string)

versionStartIncluding : 11.5.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 15044BE6-FEC9-4325-9EA1-0665FF5F7C36 (string)

versionEndIncluding : 11.6.3.2 (string)

versionStartIncluding : 11.6.0.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 1869E130-99D1-4E15-8BF7-275EF9A20D7F (string)

versionEndIncluding : 12.1.3.5 (string)

versionStartIncluding : 12.1.0.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 0E88E927-3C8E-481A-9447-00082BD73601 (string)

versionEndIncluding : 13.1.0.5 (string)

versionStartIncluding : 13.0.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.5.1-11.5.6 is processing specially crafted TCP traffic with the Large Receive Offload (LRO) feature enabled, TMM may crash, leading to a failover event. This vulnerability is not exposed unless LRO is enabled, so most affected customers will be on 13.1.x. LRO has been available since 11.4.0 but is not enabled by default until 13.1.0. (string)

}

1 : { »

lang : es (string)

value : Cuando F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2 o 11.5.1-11.5.6 está procesando tráfico TCP especialmente manipulado con la característica Large Receive Offload (LRO) habilitada, TMM podría cerrarse inesperadamente, conduciendo a un evento "failover". Esta vulnerabilidad no está expuesta a menos que LRO esté habilitado, por lo que la mayor parte de clientes afectados estarán en las versiones 13.1.x. LRO ha estado disponible desde la versión 11.4.0, pero no está habilitada por defecto hasta la versión 13.1.0. (string)

}

]

id : CVE-2018-15311 (string)

lastModified : 2024-11-21T03:50:31.993 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : MEDIUM (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 4.3 (number)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:M/Au:N/C:N/I:N/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 8.6 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV30 : [ »

0 : { »

cvssData : { »

attackComplexity : HIGH (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 5.9 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.0 (string)

}

exploitabilityScore : 2.2 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2018-10-10T14:29:00.387 (string)

references : [ »

0 : { »

source : f5sirt@f5.com (string)

tags : [ »

0 : Mitigation (string)

1 : Vendor Advisory (string)

]

url : https://support.f5.com/csp/article/K07550539 (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mitigation (string)

1 : Vendor Advisory (string)

]

url : https://support.f5.com/csp/article/K07550539 (string)

}

]

sourceIdentifier : f5sirt@f5.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-noinfo (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object