CVE-2018-5538
Last modified
CVE-2018-5538 is a vulnerability of currently unknown severity. On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable "dnsexpress.notifyport" is set to any value other than the default of "0".. EPSS estimates a 0.78% chance of exploitation in the next 30 days.
Description
On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable "dnsexpress.notifyport" is set to any value other than the default of "0".
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| F5 | Big-Ip Domain Name System | >= 12.1.3, <= 12.1.3.5 |
| F5 | Big-Ip Domain Name System | > 13.1.0, <= 13.1.0.7 |
| F5 | Big-Ip Global Traffic Manager | >= 12.1.3, <= 12.1.3.5 |
| F5 | Big-Ip Global Traffic Manager | >= 13.1.0, <= 13.1.0.7 |
| F5 | Big-Ip Local Traffic Manager | >= 12.1.3, <= 12.1.3.5 |
| F5 | Big-Ip Local Traffic Manager | >= 13.1.0, <= 13.1.0.7 |
| F5 | Big-Ip Link Controller | >= 12.1.3, <= 12.1.3.5 |
| F5 | Big-Ip Link Controller | >= 13.1.0, <= 13.1.0.7 |
References
- https://support.f5.com/csp/article/K45435121Mitigation, Vendor Advisory
- https://support.f5.com/csp/article/K45435121Mitigation, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-5538?
How severe is CVE-2018-5538?
How do I fix CVE-2018-5538?
Are you affected by CVE-2018-5538?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST