vulnerability

F5 Networks: CVE-2018-5514: K45320419: TMM with HTTP/2 vulnerability CVE-2018-5514

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Apr 30, 2018	May 1, 2018	Aug 23, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Apr 30, 2018

Added

May 1, 2018

Modified

Aug 23, 2024

Description

On F5 BIG-IP 13.1.0-13.1.0.5, maliciously crafted HTTP/2 request frames can lead to denial of service. There is data plane exposure for virtual servers when the HTTP2 profile is enabled. There is no control plane exposure to this issue.

Solution

f5-big-ip-upgrade-latest

References

BID-104097
CVE-2018-5514
https://attackerkb.com/topics/CVE-2018-5514
URL-https://my.f5.com/manage/s/article/K45320419

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today