CVE-2018-5500
https://notcve.org/view.php?id=CVE-2018-5500
On F5 BIG-IP systems running 13.0.0, 12.1.0 - 12.1.3.1, or 11.6.1 - 11.6.2, every Multipath TCP (MCTCP) connection established leaks a small amount of memory. Virtual server using TCP profile with Multipath TCP (MCTCP) feature enabled will be affected by this issue. En sistemas F5 BIG-IP que ejecutan las versiones 13.0.0, 12.1.0 - 12.1.3.1 o 11.6.1 - 11.6.2, cada conexión Multipath TCP (MCTCP) que se establece filtra una pequeña cantidad de memoria. Los servidores virtuales que emplean el perfil TCP con la característica Multipath TCP (MCTCP) habilitada se verán afectados por este problema. • http://www.securityfocus.com/bid/103217 https://support.f5.com/csp/article/K33211839 • CWE-400: Uncontrolled Resource Consumption •
CVE-2017-6142
https://notcve.org/view.php?id=CVE-2017-6142
X509 certificate verification was not correctly implemented in the early access "user id" feature in the F5 BIG-IP Advanced Firewall Manager versions 13.0.0, 12.1.0-12.1.2, and 11.6.0-11.6.2, and thus did not properly validate the remote server's identity on certain versions of BIG-IP. No se implementó correctamente la versificación de certificados X509 en la característica de acceso temprano "user id" en F5 BIG-IP Advanced Firewall Manager, en versiones 13.0.0, 12.1.0-12.1.2 y 11.6.0-11.6.2 y, por lo tanto, ni validó correctamente la identidad del servidor remoto en ciertas versiones de BIG-IP. • http://www.securitytracker.com/id/1040255 https://support.f5.com/csp/article/K20682450 • CWE-295: Improper Certificate Validation •
CVE-2017-6134
https://notcve.org/view.php?id=CVE-2017-6134
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, 12.1.0 - 12.1.2 and 11.5.1 - 11.6.1, an undisclosed sequence of packets, sourced from an adjacent network may cause TMM to crash. En F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM y WebSafe, en versiones de software 13.0.0, de la 12.1.0 a la 12.1.2 y de la 11.5.1 a la 11.6.1, una secuencia de paquetes no revelada cuyo origen es una red adyacente podría hacer que TMM se cierre de manera inesperada. • http://www.securityfocus.com/bid/102466 http://www.securitytracker.com/id/1040044 http://www.securitytracker.com/id/1040045 https://support.f5.com/csp/article/K37404773 • CWE-20: Improper Input Validation •
CVE-2017-6132
https://notcve.org/view.php?id=CVE-2017-6132
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 13.0.0, 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 and 11.5.0 - 11.5.4, an undisclosed sequence of packets sent to BIG-IP High Availability state mirror listeners (primary and/or secondary IP) may cause TMM to restart. En F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM y Websafe, en versiones de software 13.0.0, de la 12.0.0 a la 12.1.2, de la 11.6.0 a la 11.6.1 y de la 11.5.0 a la 11.5.4, una secuencia no revelada de paquetes enviada a los mirror listeners de estado de BIG-IP High Availability (IP primaria y/o secundaria) podría hacer que se reinicie TMM. • http://www.securityfocus.com/bid/102333 http://www.securitytracker.com/id/1040049 https://support.f5.com/csp/article/K12044607 • CWE-20: Improper Input Validation •
CVE-2017-6140
https://notcve.org/view.php?id=CVE-2017-6140
On the BIG-IP 2000s, 2200s, 4000s, 4200v, i5600, i5800, i7600, i7800, i10600,i10800, and VIPRION 4450 blades, running version 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 or 12.1.2 of BIG-IP LTM, AAM, AFM, Analytics, ASM, DNS, GTM or PEM, an undisclosed sequence of packets sent to Virtual Servers with client or server SSL profiles may cause disruption of data plane services. En los productos BIG-IP 2000s, 2200s, 4000s, 4200v, i5600, i5800, i7600, i7800, i10600,i10800 y los blades VIPRION 4450 en versiones 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 o 12.1.2 de BIG-IP LTM, AAM, AFM, Analytics, ASM, DNS, GTM o PEM, una secuencia de paquetes no revelada enviada a los servidores virtuales con perfiles SSL de cliente o servidor pueden hacer que se interrumpan los servicios de plano de datos. • http://www.securitytracker.com/id/1040042 https://support.f5.com/csp/article/K55102452 • CWE-20: Improper Input Validation •