Unrated severityNVD Advisory· Published May 2, 2018· Updated Sep 16, 2024

CVE-2018-5514

Description

On F5 BIG-IP 13.1.0-13.1.0.5, maliciously crafted HTTP/2 request frames can lead to denial of service. There is data plane exposure for virtual servers when the HTTP2 profile is enabled. There is no control plane exposure to this issue.

Affected products

F5 Networks, Inc./Big Ip (ltm, Aam, Afm, Apm, Asm, Link Controller, Pem, Webaccelerator, Websafe)v5
Range: 13.1.0-13.1.0.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/104097mitrevdb-entryx_refsource_BID
www.securitytracker.com/id/1040804mitrevdb-entryx_refsource_SECTRACK
support.f5.com/csp/article/K45320419mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000