Details of VAR-201805-0923

ID

VAR-201805-0923

CVE

CVE-2018-5516

TITLE

plural F5 Access control vulnerabilities in products

Trust: 0.8

sources: JVNDB: JVNDB-2018-004934

DESCRIPTION

On F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.2, or 11.2.1-11.6.3.1, Enterprise Manager 3.1.1, BIG-IQ Centralized Management 5.0.0-5.4.0 or 4.6.0, BIG-IQ Cloud and Orchestration 1.0.0, or F5 iWorkflow 2.0.2-2.3.0, authenticated users granted TMOS Shell (tmsh) access can access objects on the file system which would normally be disallowed by tmsh restrictions. This allows for authenticated, low privileged attackers to exfiltrate objects on the file system which should not be allowed. plural F5 The product contains an access control vulnerability.Information may be obtained. F5BIG-IPLTM and other products are products of American F5 Company. F5BIG-IPLTM is a local traffic manager; BIG-IPAAM is an application acceleration manager. TMOSShell (tmsh) is one of the command line tools. There are security vulnerabilities in TMOSShell in several F5 products. An attacker could exploit this vulnerability to obtain objects on the file system. F5 BIG-IP LTM, etc. The following products and versions are affected: F5 BIG-IP LTM version 13.0.0 to 13.1.0.5, 12.1.0 to 12.1.2, 11.2.1 to 11.6.3.1; BIG-IP AAM version 13.0.0 to version 13.1.0.5, version 12.1.0 to version 12.1.2, version 11.2.1 to version 11.6.3.1; BIG-IP AFM version 13.0.0 to version 13.1.0.5, version 12.1.0 to version 12.1.2, 11.2.1 to 11.6.3.1; BIG-IP Analytics 13.0.0 to 13.1.0.5, 12.1.0 to 12.1.2, 11.2.1 to 11.6.3.1; BIG-IP APM 13.0. 0 to 13.1.0.5, 12.1.0 to 12.1.2, 11.2.1 to 11.6.3.1; BIG-IP ASM 13.0.0 to 13.1.0.5, 12.1.0 to 12.1.2 Versions, 11.2.1 to 11.6.3.1; BIG-IP DNS 13.0.0 to 13.1.0.5, 12.1.0 to 12.1.2, 11.2.1 to 11.6.3.1; BIG-IP Edge Gateway 13.0.0 to 13.1.0.5, 12.1.0 to 12.1.2, 11.2.1 to 11.6.3.1; BIG-IP GTM 13.0.0 to 13.1.0.5, 12.1.0 to Version 12.1.2, Version 11.2.1 to Version 11.6.3.1; BIG-IP Link Controller Version 13.0.0 to Version 13.1.0.5, Version 12.1.0 to Version 12.1

Trust: 2.25

sources: NVD: CVE-2018-5516 // JVNDB: JVNDB-2018-004934 // CNVD: CNVD-2018-10103 // VULHUB: VHN-135547

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2018-10103

AFFECTED PRODUCTS

vendor:	f5	model:	big-iq centralized management	scope:	eq	version:	4.6.0	Trust: 1.6
vendor:	f5	model:	big-iq cloud and orchestration	scope:	eq	version:	1.0.0	Trust: 1.6
vendor:	f5	model:	big-ip webaccelerator	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip websafe	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip local traffic manager	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip analytics	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip domain name system	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip domain name system	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip link controller	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip link controller	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-iq centralized management	scope:	lte	version:	5.4.0	Trust: 1.0
vendor:	f5	model:	big-ip websafe	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip advanced firewall manager	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip policy enforcement manager	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip websafe	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip analytics	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip application acceleration manager	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip access policy manager	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-iq centralized management	scope:	gte	version:	5.0.0	Trust: 1.0
vendor:	f5	model:	big-ip edge gateway	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip webaccelerator	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip analytics	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip websafe	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip domain name system	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip webaccelerator	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip link controller	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip websafe	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip application acceleration manager	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip webaccelerator	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip advanced firewall manager	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip application acceleration manager	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip analytics	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip webaccelerator	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip enterprise manager	scope:	eq	version:	3.1.1	Trust: 1.0
vendor:	f5	model:	big-ip local traffic manager	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip global traffic manager	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip edge gateway	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip edge gateway	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip local traffic manager	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip application acceleration manager	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip policy enforcement manager	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	iworkflow	scope:	lte	version:	2.3.0	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip access policy manager	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip advanced firewall manager	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip global traffic manager	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip edge gateway	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip advanced firewall manager	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip access policy manager	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip policy enforcement manager	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip application acceleration manager	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip webaccelerator	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip local traffic manager	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	iworkflow	scope:	gte	version:	2.0.2	Trust: 1.0
vendor:	f5	model:	big-ip link controller	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip global traffic manager	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip global traffic manager	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip access policy manager	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip domain name system	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip advanced firewall manager	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip domain name system	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip edge gateway	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip policy enforcement manager	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip link controller	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip local traffic manager	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip local traffic manager	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip analytics	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip access policy manager	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip policy enforcement manager	scope:	gte	version:	12.1.0	Trust: 1.0
vendor:	f5	model:	big-ip advanced firewall manager	scope:	lte	version:	13.1.0	Trust: 1.0
vendor:	f5	model:	big-ip edge gateway	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip application acceleration manager	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip policy enforcement manager	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip analytics	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip domain name system	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip link controller	scope:	lte	version:	11.6.3	Trust: 1.0
vendor:	f5	model:	big-ip global traffic manager	scope:	gte	version:	11.2.1	Trust: 1.0
vendor:	f5	model:	big-ip global traffic manager	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip access policy manager	scope:	gte	version:	13.0.0	Trust: 1.0
vendor:	f5	model:	big-ip websafe	scope:	lte	version:	12.1.2	Trust: 1.0
vendor:	f5	model:	big-ip access policy manager	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip advanced firewall manager	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip analytics	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip application acceleration manager	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip application security manager	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip domain name system	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip edge gateway	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip enterprise manager	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip global traffic manager	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip link controller	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip local traffic manager	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip policy enforcement manager	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip webaccelerator	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-ip websafe	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-iq centralized management	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	big-iq cloud and orchestration	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	iworkflow	scope:	-	version:	-	Trust: 0.8
vendor:	f5	model:	enterprise manager	scope:	eq	version:	3.1.1	Trust: 0.6
vendor:	f5	model:	big-ip ltm	scope:	gte	version:	12.1.0,<=12.1.2	Trust: 0.6
vendor:	f5	model:	big-ip aam	scope:	gte	version:	12.1.0,<=12.1.2	Trust: 0.6
vendor:	f5	model:	big-ip afm	scope:	gte	version:	12.1.0,<=12.1.2	Trust: 0.6
vendor:	f5	model:	big-ip apm	scope:	gte	version:	12.1.0,<=12.1.2	Trust: 0.6
vendor:	f5	model:	big-ip asm	scope:	gte	version:	12.1.0,<=12.1.2	Trust: 0.6
vendor:	f5	model:	big-ip link controller	scope:	gte	version:	12.1.0,<=12.1.2	Trust: 0.6
vendor:	f5	model:	big-ip pem	scope:	gte	version:	12.1.0,<=12.1.2	Trust: 0.6
vendor:	f5	model:	big-ip websafe	scope:	gte	version:	12.1.0,<=12.1.2	Trust: 0.6
vendor:	f5	model:	big-ip ltm	scope:	gte	version:	13.0.0<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip aam	scope:	gte	version:	13.0.0<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip afm	scope:	gte	version:	13.0.0<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip analytics	scope:	gte	version:	13.0.0,<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip apm	scope:	gte	version:	13.0.0<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip asm	scope:	gte	version:	13.0.0<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip dns	scope:	gte	version:	13.0.0<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip edge gateway	scope:	gte	version:	13.0.0,<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip gtm	scope:	gte	version:	13.0.0<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip link controller	scope:	gte	version:	13.0.0,<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip pem	scope:	gte	version:	13.0.0<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip webaccelerator	scope:	gte	version:	13.0.0,<=13.1.0.5	Trust: 0.6
vendor:	f5	model:	big-ip ltm	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip aam	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip afm	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip analytics	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip apm	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip asm	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip dns	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip edge gateway	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip gtm	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip link controller	scope:	gte	version:	11.2.1,<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip pem	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip webaccelerator	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-ip websafe	scope:	gte	version:	11.2.1<=11.6.3.1	Trust: 0.6
vendor:	f5	model:	big-iq centralized management	scope:	gte	version:	5.0.0,<=5.4.0	Trust: 0.6
vendor:	f5	model:	iworkflow	scope:	gte	version:	2.0.2<=2.3.0	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.4.1	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.5.4	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.5.3	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.5.1	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.2.1	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.5.5	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.4.0	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.5.0	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.3.0	Trust: 0.6
vendor:	f5	model:	big-ip local traffic manager	scope:	eq	version:	11.5.2	Trust: 0.6

sources: CNVD: CNVD-2018-10103 // JVNDB: JVNDB-2018-004934 // CNNVD: CNNVD-201805-118 // NVD: CVE-2018-5516

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-5516
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2018-5516
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2018-10103
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201805-118
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-135547
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2018-5516
severity:	MEDIUM
baseScore:	4.7
vectorString:	AV:L/AC:M/AU:N/C:C/I:N/A:N
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.4
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2018-10103
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-135547
severity:	MEDIUM
baseScore:	4.7
vectorString:	AV:L/AC:M/AU:N/C:C/I:N/A:N
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.4
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-5516
baseSeverity:	MEDIUM
baseScore:	4.7
vectorString:	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.0
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2018-10103 // VULHUB: VHN-135547 // JVNDB: JVNDB-2018-004934 // CNNVD: CNNVD-201805-118 // NVD: CVE-2018-5516

PROBLEMTYPE DATA

problemtype:	CWE-732	Trust: 1.1
problemtype:	CWE-284	Trust: 0.9

sources: VULHUB: VHN-135547 // JVNDB: JVNDB-2018-004934 // NVD: CVE-2018-5516

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201805-118

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201805-118

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-004934

PATCH

title:	K37442533	url:	https://support.f5.com/csp/article/K37442533	Trust: 0.8
title:	Patch of various F5 products TMOSShell information disclosure vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/129951	Trust: 0.6
title:	Multiple F5 product TMOS Shell Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=79851	Trust: 0.6

sources: CNVD: CNVD-2018-10103 // JVNDB: JVNDB-2018-004934 // CNNVD: CNNVD-201805-118

EXTERNAL IDS

db:	NVD	id:	CVE-2018-5516	Trust: 3.1
db:	SECTRACK	id:	1040800	Trust: 2.3
db:	SECTRACK	id:	1040799	Trust: 1.7
db:	JVNDB	id:	JVNDB-2018-004934	Trust: 0.8
db:	CNNVD	id:	CNNVD-201805-118	Trust: 0.7
db:	CNVD	id:	CNVD-2018-10103	Trust: 0.6
db:	VULHUB	id:	VHN-135547	Trust: 0.1

sources: CNVD: CNVD-2018-10103 // VULHUB: VHN-135547 // JVNDB: JVNDB-2018-004934 // CNNVD: CNNVD-201805-118 // NVD: CVE-2018-5516

REFERENCES

url:	https://support.f5.com/csp/article/k37442533	Trust: 1.7
url:	http://www.securitytracker.com/id/1040799	Trust: 1.7
url:	http://www.securitytracker.com/id/1040800	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2018-5516	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-5516	Trust: 0.8
url:	https://securitytracker.com/id/1040800	Trust: 0.6

sources: CNVD: CNVD-2018-10103 // VULHUB: VHN-135547 // JVNDB: JVNDB-2018-004934 // CNNVD: CNNVD-201805-118 // NVD: CVE-2018-5516

SOURCES

db:	CNVD	id:	CNVD-2018-10103
db:	VULHUB	id:	VHN-135547
db:	JVNDB	id:	JVNDB-2018-004934
db:	CNNVD	id:	CNNVD-201805-118
db:	NVD	id:	CVE-2018-5516

LAST UPDATE DATE

2024-11-23T23:12:07.861000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2018-10103	date:	2018-05-23T00:00:00
db:	VULHUB	id:	VHN-135547	date:	2019-10-03T00:00:00
db:	JVNDB	id:	JVNDB-2018-004934	date:	2018-07-02T00:00:00
db:	CNNVD	id:	CNNVD-201805-118	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2018-5516	date:	2024-11-21T04:08:58.470

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2018-10103	date:	2018-05-23T00:00:00
db:	VULHUB	id:	VHN-135547	date:	2018-05-02T00:00:00
db:	JVNDB	id:	JVNDB-2018-004934	date:	2018-07-02T00:00:00
db:	CNNVD	id:	CNNVD-201805-118	date:	2018-05-03T00:00:00
db:	NVD	id:	CVE-2018-5516	date:	2018-05-02T13:29:00.617