SSL Data Structure Corruption in BIG-IP by F5 Networks
CVE-2018-15317

7.5HIGH

Key Information:

Vendor: F5
Status: Big-ip (ltm, Aam, Afm, Analytics, Apm, Asm, Dns, Edge Gateway, Fps, Gtm, Link Controller, Pem, Webaccelerator)
Vendor: CVE Published:; 31 October 2018

Summary

F5 BIG-IP versions 14.0.0-14.0.0.2, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.2.1-11.6.3.2 contain a vulnerability that allows an attacker to disrupt SSL communication. By sending specially crafted SSL records to an SSL Virtual Server, this vulnerability leads to corruption in SSL data structures. As a result, clients may encounter 'decrypt BAD_RECORD_MAC' errors, preventing access to applications load-balanced by the affected virtual server until the traffic management process (tmm) is restarted.

Affected Version(s)

BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) 14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, 11.2.1-11.5.6

References

https://support.f5.com/csp/article/K43625118

x_refsource_CONFIRM

https://support.f5.com/csp/article/K43625118?utm_source=f...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 31, 2018
Vulnerability Reserved
Aug 14, 2018