CVE-2018-5538

low-risk

Published 2018-07-25

On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable "dnsexpress.notifyport" is set to any value other than the default of "0".

Do I need to act?

0.38% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 3.7/10 Low

NETWORK / HIGH complexity

Affected Products (4)

Big-Ip Domain Name System

Big-Ip Global Traffic Manager

Big-Ip Local Traffic Manager

Big-Ip Link Controller

Affected Vendors

References (2)

Mitigation https://support.f5.com/csp/article/K45435121

/ 100

low-risk

Severity 13/34 · Low

Exploitability 1/34 · Minimal

Exposure 10/34 · Low