CVE-2018-5532 — MEDIUM (5.3)

Q: How severe is CVE-2018-5532?

CVE-2018-5532 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-5532?

Check the references section above for vendor advisories and patch information. Affected products include: F5 Big-Ip Local Traffic Manager, F5 Big-Ip Application Acceleration Manager, F5 Big-Ip Advanced Firewall Manager, F5 Big-Ip Analytics, F5 Big-Ip Access Policy Manager.

Vulnerability Description

On F5 BIG-IP 13.0.0, 12.1.0-12.1.2, 11.6.0-11.6.3.1, or 11.2.1-11.5.6 a domain name cached within the DNS Cache of TMM may continue to be resolved by the cache even after the parent server revokes the record, if the DNS Cache is receiving a stream of requests for the cached name.

CVSS Score

5.3

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
F5	Big-Ip Local Traffic Manager	>= 11.2.1, <= 11.5.6
F5	Big-Ip Application Acceleration Manager	>= 11.2.1, <= 11.5.6
F5	Big-Ip Advanced Firewall Manager	>= 11.2.1, <= 11.5.6
F5	Big-Ip Analytics	>= 11.2.1, <= 11.5.6
F5	Big-Ip Access Policy Manager	>= 11.2.1, <= 11.5.6
F5	Big-Ip Application Security Manager	>= 10.1.0, <= 11.5.6
F5	Big-Ip Domain Name System	>= 11.2.1, <= 11.5.6
F5	Big-Ip Edge Gateway	>= 11.2.1, <= 11.5.6
F5	Big-Ip Fraud Protection Service	>= 11.2.1, <= 11.5.6
F5	Big-Ip Global Traffic Manager	>= 11.2.1, <= 11.5.6
F5	Big-Ip Link Controller	>= 11.2.1, <= 11.5.6
F5	Big-Ip Policy Enforcement Manager	>= 11.2.1, <= 11.5.6
F5	Big-Ip Webaccelerator	>= 11.2.1, <= 11.5.6

References

http://www.securitytracker.com/id/1041345Third Party AdvisoryVDB Entry
https://support.f5.com/csp/article/K48224824Vendor Advisory
http://www.securitytracker.com/id/1041345Third Party AdvisoryVDB Entry
https://support.f5.com/csp/article/K48224824Vendor Advisory

FAQ

What is CVE-2018-5532?

CVE-2018-5532 is a vulnerability with a CVSS score of 5.3 (MEDIUM). On F5 BIG-IP 13.0.0, 12.1.0-12.1.2, 11.6.0-11.6.3.1, or 11.2.1-11.5.6 a domain name cached within the DNS Cache of TMM may continue to be resolved by the cache even after the parent server revokes the...

How severe is CVE-2018-5532?

CVE-2018-5532 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-5532?

Check the references section above for vendor advisories and patch information. Affected products include: F5 Big-Ip Local Traffic Manager, F5 Big-Ip Application Acceleration Manager, F5 Big-Ip Advanced Firewall Manager, F5 Big-Ip Analytics, F5 Big-Ip Access Policy Manager.