CVE-2018-5514
N/A
N/A
Summary
On F5 BIG-IP 13.1.0-13.1.0.5, maliciously crafted HTTP/2 request frames can lead to denial of service. There is data plane exposure for virtual servers when the HTTP2 profile is enabled. There is no control plane exposure to this issue.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| F5 Networks, Inc. | BIG-IP (LTM, AAM, AFM, APM, ASM, Link Controller, PEM, WebAccelerator, WebSafe) | 13.1.0-13.1.0.5 | affected |
Weaknesses
- DoS
ADP Enrichment
CVE Program Container
Additional References
- https://support.f5.com/csp/article/K45320419
- http://www.securitytracker.com/id/1040804
- http://www.securityfocus.com/bid/104097
References
- https://support.f5.com/csp/article/K45320419
- http://www.securitytracker.com/id/1040804
- http://www.securityfocus.com/bid/104097
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.