CVE-2018-5539

Summary

Under certain conditions, on F5 BIG-IP ASM 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, 11.6.0-11.6.3.1, 11.5.1-11.5.6, or 11.2.1, when processing CSRF protections, the BIG-IP ASM bd process may restart and produce a core file.

Affected Software

VendorProductVersion RangeStatus
F5 Networks, Inc.BIG-IP (ASM)13.0.0-13.1.0.7affected
F5 Networks, Inc.BIG-IP (ASM)12.1.0-12.1.3.5affected
F5 Networks, Inc.BIG-IP (ASM)11.6.0-11.6.3.1affected
F5 Networks, Inc.BIG-IP (ASM)11.5.1-11.5.6affected
F5 Networks, Inc.BIG-IP (ASM)11.2.1affected

Weaknesses

  • DoS

ADP Enrichment

CVE Program Container

Additional References

References