CVE-2018-15324 — Improper Input Validation in F5 Big-ip Access Policy Manager

Severity

5.9MEDIUMNVD

EPSS

0.6%

top 29.21%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedOct 31

Latest updateMay 14

Description

On BIG-IP APM 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, TMM may restart when processing a specially crafted request with APM portal access.

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

▶CVEListV5f5_networks_inc/big-ip14.0.0-14.0.0.2, 13.0.0-13.1.1.1

GHSA

GHSA-7vf7-877p-m8c7: On BIG-IP APM 14↗2022-05-14

▶

CVEList

CVE-2018-15324: On BIG-IP APM 14↗2018-10-31

▶

CVE-2018-15324: On BIG-IP APM 14↗2018-10-31

▶