Vulnerability Details CVE-2018-5538
On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable "dnsexpress.notifyport" is set to any value other than the default of "0".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.5%
CVSS Severity
CVSS v3 Score 3.7
CVSS v2 Score 4.3
References
Products affected by CVE-2018-5538
-
cpe:2.3:a:f5:big-ip_domain_name_system:12.1.3
-
cpe:2.3:a:f5:big-ip_domain_name_system:12.1.3.1
-
cpe:2.3:a:f5:big-ip_domain_name_system:12.1.3.2
-
cpe:2.3:a:f5:big-ip_domain_name_system:12.1.3.3
-
cpe:2.3:a:f5:big-ip_domain_name_system:12.1.3.4
-
cpe:2.3:a:f5:big-ip_domain_name_system:12.1.3.5
-
cpe:2.3:a:f5:big-ip_domain_name_system:13.1.0.0
-
cpe:2.3:a:f5:big-ip_domain_name_system:13.1.0.1
-
cpe:2.3:a:f5:big-ip_domain_name_system:13.1.0.2
-
cpe:2.3:a:f5:big-ip_domain_name_system:13.1.0.3
-
cpe:2.3:a:f5:big-ip_domain_name_system:13.1.0.4
-
cpe:2.3:a:f5:big-ip_domain_name_system:13.1.0.5
-
cpe:2.3:a:f5:big-ip_domain_name_system:13.1.0.6
-
cpe:2.3:a:f5:big-ip_domain_name_system:13.1.0.7
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.3
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.3.1
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.3.2
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.3.3
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.3.4
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.3.5
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0.0
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0.1
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0.2
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0.3
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0.4
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0.5
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0.6
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.1.0.7
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.3
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.3.1
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.3.2
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.3.3
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.3.4
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.3.5
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0.0
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0.1
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0.2
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0.3
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0.4
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0.5
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0.6
-
cpe:2.3:a:f5:big-ip_link_controller:13.1.0.7
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.3
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.3.1
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.3.2
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.3.3
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.3.4
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.3.5
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0.0
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0.1
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0.2
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0.3
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0.4
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0.5
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0.6
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.1.0.7