What is the severity of CVE-2016-4545?

CVE-2016-4545 is classified as a high-severity vulnerability due to its potential to cause denial of service.

How do I fix CVE-2016-4545?

To fix CVE-2016-4545, it is recommended to upgrade F5 BIG-IP to a version that is not affected, specifically a version later than 11.5.4.

What types of F5 BIG-IP are affected by CVE-2016-4545?

CVE-2016-4545 affects F5 BIG-IP models including Application Acceleration Manager, Advanced Firewall Manager, and several others, all specifically at version 11.5.4.

Can CVE-2016-4545 be exploited remotely?

Yes, CVE-2016-4545 can be exploited remotely by attackers through SSL alerts during the handshake process.

Vulnerability/
CVE-2016-4545

high

7.5

CWE

7/6/2016

6/8/2024

CVE-2016-4545: Input Validation

First published: Tue Jun 07 2016(Updated: )

Virtual servers in F5 BIG-IP 11.5.4, when SSL profiles are enabled, allow remote attackers to cause a denial of service (resource consumption and Traffic Management Microkernel restart) via an SSL alert during the handshake.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
f5 big-ip application acceleration manager	=11.5.4
F5 BIG-IP Advanced Firewall Manager	=11.5.4
F5 BIG-IP Local Traffic Manager	=11.5.4
F5 BIG-IP Analytics	=11.5.4
F5 BIG-IP Global Traffic Manager	=11.5.4
F5 BIG-IP Policy Enforcement Manager	=11.5.4
f5 big-ip link controller	=11.5.4
F5 BIG-IP Access Policy Manager	=11.5.4
F5 BIG-IP Application Security Manager	=11.5.4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-4545?
CVE-2016-4545 is classified as a high-severity vulnerability due to its potential to cause denial of service.
How do I fix CVE-2016-4545?
To fix CVE-2016-4545, it is recommended to upgrade F5 BIG-IP to a version that is not affected, specifically a version later than 11.5.4.
What types of F5 BIG-IP are affected by CVE-2016-4545?
CVE-2016-4545 affects F5 BIG-IP models including Application Acceleration Manager, Advanced Firewall Manager, and several others, all specifically at version 11.5.4.
What are the risks associated with CVE-2016-4545?
The risks associated with CVE-2016-4545 include resource consumption and traffic management microkernel restarts leading to service disruptions.
Can CVE-2016-4545 be exploited remotely?
Yes, CVE-2016-4545 can be exploited remotely by attackers through SSL alerts during the handshake process.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/author
agent/severity
agent/last-modified-date
agent/softwarecombine
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/f5
canonical/f5 big-ip application acceleration manager
version/f5 big-ip application acceleration manager/11.5.4
canonical/f5 big-ip advanced firewall manager
version/f5 big-ip advanced firewall manager/11.5.4
canonical/f5 big-ip local traffic manager
version/f5 big-ip local traffic manager/11.5.4
canonical/f5 big-ip analytics
version/f5 big-ip analytics/11.5.4
canonical/f5 big-ip global traffic manager
version/f5 big-ip global traffic manager/11.5.4
canonical/f5 big-ip policy enforcement manager
version/f5 big-ip policy enforcement manager/11.5.4
canonical/f5 big-ip link controller
version/f5 big-ip link controller/11.5.4
canonical/f5 big-ip access policy manager
version/f5 big-ip access policy manager/11.5.4
canonical/f5 big-ip application security manager
version/f5 big-ip application security manager/11.5.4

Frequently Asked Questions

What is the severity of CVE-2016-4545?
CVE-2016-4545 is classified as a high-severity vulnerability due to its potential to cause denial of service.
How do I fix CVE-2016-4545?
To fix CVE-2016-4545, it is recommended to upgrade F5 BIG-IP to a version that is not affected, specifically a version later than 11.5.4.
What types of F5 BIG-IP are affected by CVE-2016-4545?
CVE-2016-4545 affects F5 BIG-IP models including Application Acceleration Manager, Advanced Firewall Manager, and several others, all specifically at version 11.5.4.
What are the risks associated with CVE-2016-4545?
The risks associated with CVE-2016-4545 include resource consumption and traffic management microkernel restarts leading to service disruptions.
Can CVE-2016-4545 be exploited remotely?
Yes, CVE-2016-4545 can be exploited remotely by attackers through SSL alerts during the handshake process.

CVE-2016-4545: Input Validation

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-4545?

How do I fix CVE-2016-4545?

What types of F5 BIG-IP are affected by CVE-2016-4545?

What are the risks associated with CVE-2016-4545?

Can CVE-2016-4545 be exploited remotely?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2016-4545?

How do I fix CVE-2016-4545?

What types of F5 BIG-IP are affected by CVE-2016-4545?

What are the risks associated with CVE-2016-4545?

Can CVE-2016-4545 be exploited remotely?