ID CVE-2018-5538
Summary On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable "dnsexpress.notifyport" is set to any value other than the default of "0".
References
Vulnerable Configurations
CVSS
Base: 4.3
Impact:
Exploitability:
CWE CWE-254
CAPEC
nessus via4
NASL family F5 Networks Local Security Checks
NASL id F5_BIGIP_SOL45435121.NASL
description On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable 'dnsexpress.notifyport' is set to any value other than the default of '0'. (CVE-2018-5538) Impact This vulnerability may allow a malicious actor to cause DNS Express to constantly check for updates. An update only occurs if the zone's serial number has changed.
last seen 2019-02-21
modified 2019-01-04
plugin id 118666
published 2018-11-02
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=118666
title F5 Networks BIG-IP : DNS Express vulnerability (K45435121)
refmap via4
confirm https://support.f5.com/csp/article/K45435121
Last major update 25-07-2018 - 10:29
Published 25-07-2018 - 10:29
Last modified 17-09-2018 - 14:11
Back to Top