CVE-2018-5538

Summary

On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable "dnsexpress.notifyport" is set to any value other than the default of "0".

Affected Software

VendorProductVersion RangeStatus
F5 Networks, Inc.BIG-IP (DNS)13.1.0-13.1.0.7affected
F5 Networks, Inc.BIG-IP (DNS)12.1.3-12.1.3.5affected

Weaknesses

  • DoS

ADP Enrichment

CVE Program Container

Additional References

References