CVE-2018-5538
First published: Wed Jul 25 2018(Updated: )
On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable "dnsexpress.notifyport" is set to any value other than the default of "0".
Credit: f5sirt@f5.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| F5 BIG-IP | >=12.1.3<=12.1.3.5 | |
| F5 BIG-IP | >13.1.0<=13.1.0.7 | |
| Riverbed SteelApp Traffic Manager | >=12.1.3<=12.1.3.5 | |
| Riverbed SteelApp Traffic Manager | >=13.1.0<=13.1.0.7 | |
| Riverbed SteelApp Traffic Manager | >=12.1.3<=12.1.3.5 | |
| Riverbed SteelApp Traffic Manager | >=13.1.0<=13.1.0.7 | |
| F5 BIG-IP Link Controller | >=12.1.3<=12.1.3.5 | |
| F5 BIG-IP Link Controller | >=13.1.0<=13.1.0.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-5538?
CVE-2018-5538 has a medium severity rating, impacting the F5 BIG-IP DNS and related modules.
How do I fix CVE-2018-5538?
To address CVE-2018-5538, update your F5 BIG-IP software to the latest version that resolves this vulnerability.
What systems are affected by CVE-2018-5538?
CVE-2018-5538 affects F5 BIG-IP DNS, Global Traffic Manager, Local Traffic Manager, and Link Controller versions specified in the vulnerability details.
What are the potential impacts of CVE-2018-5538?
Exploitation of CVE-2018-5538 may allow unauthorized NOTIFY messages to be accepted on the management interface, leading to potential misconfigurations.
Is there a workaround for CVE-2018-5538?
A temporary workaround for CVE-2018-5538 includes restricting the source IP addresses allowed to send NOTIFY messages based on your environment's requirements.
- agent/type
- agent/severity
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/f5
- canonical/f5 big-ip
- version/f5 big-ip/12.1.3
- version/f5 big-ip/12.1.3.5
- version/f5 big-ip/13.1.0.7
- canonical/riverbed steelapp traffic manager
- version/riverbed steelapp traffic manager/12.1.3
- version/riverbed steelapp traffic manager/12.1.3.5
- version/riverbed steelapp traffic manager/13.1.0
- version/riverbed steelapp traffic manager/13.1.0.7
- canonical/f5 big-ip link controller
- version/f5 big-ip link controller/12.1.3
- version/f5 big-ip link controller/12.1.3.5
- version/f5 big-ip link controller/13.1.0
- version/f5 big-ip link controller/13.1.0.7