The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of TMOS

vulnerability alert CVE-2018-8897

Linux kernel: privilege escalation via DB Exceptions

Synthesis of the vulnerability

An attacker can bypass restrictions via DB Exceptions of the Linux kernel, in order to escalate his privileges.
Impacted products: Debian, BIG-IP Hardware, TMOS, FreeBSD, QRadar SIEM, Linux, pfSense, RHEL, SUSE Linux Enterprise Desktop, SLES, Synology DSM, Synology DS***, Synology RS***, Ubuntu.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user shell.
Creation date: 09/05/2018.
Identifiers: CERTFR-2018-AVI-224, CERTFR-2018-AVI-226, CERTFR-2018-AVI-228, CERTFR-2018-AVI-232, CERTFR-2018-AVI-584, CVE-2018-8897, DLA-1392-1, DSA-4196-1, FreeBSD-SA-18:06.debugreg, ibm10742755, K17403481, RHSA-2018:1318-01, RHSA-2018:1319-01, RHSA-2018:1345-01, RHSA-2018:1346-01, RHSA-2018:1347-01, RHSA-2018:1348-01, RHSA-2018:1349-01, RHSA-2018:1350-01, RHSA-2018:1351-01, RHSA-2018:1352-01, RHSA-2018:1353-01, RHSA-2018:1354-01, RHSA-2018:1355-01, SUSE-SU-2018:1171-1, SUSE-SU-2018:1172-1, SUSE-SU-2018:1173-1, SUSE-SU-2018:1220-1, SUSE-SU-2018:1221-1, Synology-SA-18:51, USN-3641-1, USN-3641-2, VIGILANCE-VUL-26071, VU#631579.

Description of the vulnerability

An attacker can bypass restrictions via DB Exceptions of the Linux kernel, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2018-5515

F5 BIG-IP: denial of service via RADIUS Authentication Responses

Synthesis of the vulnerability

An attacker can generate a fatal error via RADIUS Authentication Responses of F5 BIG-IP, in order to trigger a denial of service.
Impacted products: BIG-IP Hardware, TMOS.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service.
Provenance: intranet server.
Creation date: 02/05/2018.
Identifiers: CVE-2018-5515, K62750376, VIGILANCE-VUL-26010.

Description of the vulnerability

An attacker can generate a fatal error via RADIUS Authentication Responses of F5 BIG-IP, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability note CVE-2018-5512

F5 BIG-IP: denial of service via LRO SYN Cookies

Synthesis of the vulnerability

An attacker can generate a fatal error via LRO SYN Cookies of F5 BIG-IP, in order to trigger a denial of service.
Impacted products: BIG-IP Hardware, TMOS.
Severity: 3/4.
Consequences: denial of service on server, denial of service on service.
Provenance: intranet client.
Creation date: 02/05/2018.
Identifiers: CVE-2018-5512, K51754851, VIGILANCE-VUL-26009.

Description of the vulnerability

An attacker can generate a fatal error via LRO SYN Cookies of F5 BIG-IP, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin CVE-2018-5519

F5 BIG-IP: read-write access via ssldump

Synthesis of the vulnerability

An attacker can bypass access restrictions via ssldump of F5 BIG-IP, in order to read or alter data.
Impacted products: BIG-IP Hardware, TMOS.
Severity: 1/4.
Consequences: data reading, data creation/edition, data deletion.
Provenance: privileged account.
Creation date: 02/05/2018.
Identifiers: CVE-2018-5519, K46121888, VIGILANCE-VUL-26008.

Description of the vulnerability

An attacker can bypass access restrictions via ssldump of F5 BIG-IP, in order to read or alter data.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2018-5514

F5 BIG-IP: denial of service via HTTP/2

Synthesis of the vulnerability

An attacker can generate a fatal error via HTTP/2 of F5 BIG-IP, in order to trigger a denial of service.
Impacted products: BIG-IP Hardware, TMOS.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service.
Provenance: internet client.
Creation date: 02/05/2018.
Identifiers: CVE-2018-5514, K45320419, VIGILANCE-VUL-26007.

Description of the vulnerability

An attacker can generate a fatal error via HTTP/2 of F5 BIG-IP, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2018-5516

F5 BIG-IP: file reading via tmsh

Synthesis of the vulnerability

A local attacker can read a file via tmsh of F5 BIG-IP, in order to obtain sensitive information.
Impacted products: BIG-IP Hardware, TMOS.
Severity: 2/4.
Consequences: data reading.
Provenance: user shell.
Creation date: 02/05/2018.
Identifiers: CVE-2018-5516, K37442533, VIGILANCE-VUL-26006.

Description of the vulnerability

A local attacker can read a file via tmsh of F5 BIG-IP, in order to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2018-5517

F5 BIG-IP: denial of service via FastL4 TCP Self IP Address

Synthesis of the vulnerability

An attacker can generate a fatal error via FastL4 TCP Self IP Address of F5 BIG-IP, in order to trigger a denial of service.
Impacted products: BIG-IP Hardware, TMOS.
Severity: 3/4.
Consequences: denial of service on server, denial of service on service.
Provenance: internet client.
Creation date: 02/05/2018.
Identifiers: CVE-2018-5517, K25573437, VIGILANCE-VUL-26005.

Description of the vulnerability

An attacker can generate a fatal error via FastL4 TCP Self IP Address of F5 BIG-IP, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability note CVE-2018-5518

F5 BIG-IP: denial of service via vCMP Guest

Synthesis of the vulnerability

An attacker can generate a fatal error via vCMP Guest of F5 BIG-IP, in order to trigger a denial of service.
Impacted products: BIG-IP Hardware, TMOS.
Severity: 1/4.
Consequences: denial of service on server, denial of service on service.
Provenance: privileged shell.
Creation date: 02/05/2018.
Identifiers: CVE-2018-5518, K03165684, VIGILANCE-VUL-26004.

Description of the vulnerability

An attacker can generate a fatal error via vCMP Guest of F5 BIG-IP, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability bulletin CVE-2018-5520

F5 BIG-IP: file reading via dig

Synthesis of the vulnerability

A local attacker can read a file via dig of F5 BIG-IP, in order to obtain sensitive information.
Impacted products: BIG-IP Hardware, TMOS.
Severity: 2/4.
Consequences: data reading.
Provenance: user shell.
Creation date: 02/05/2018.
Identifiers: CVE-2018-5520, K02043709, VIGILANCE-VUL-26003.

Description of the vulnerability

A local attacker can read a file via dig of F5 BIG-IP, in order to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability note CVE-2018-2783 CVE-2018-2790 CVE-2018-2794

Oracle Java: vulnerabilities of April 2018

Synthesis of the vulnerability

Several vulnerabilities were announced in Oracle products.
Impacted products: Debian, BIG-IP Hardware, TMOS, Fedora, AIX, DB2 UDB, IBM i, IRAD, Rational ClearCase, Security Directory Server, Tivoli Storage Manager, Tivoli System Automation, Tivoli Workload Scheduler, WebSphere AS Liberty, WebSphere AS Traditional, IBM WebSphere ESB, WebSphere MQ, ePO, Java OpenJDK, openSUSE Leap, Java Oracle, Puppet, RHEL, SUSE Linux Enterprise Desktop, SLES, Ubuntu.
Severity: 3/4.
Consequences: privileged access/rights, user access/rights, data reading, data creation/edition, data deletion, denial of service on service.
Provenance: document.
Number of vulnerabilities in this bulletin: 14.
Creation date: 18/04/2018.
Identifiers: 2016282, CERTFR-2018-AVI-188, cpuapr2018, CVE-2018-2783, CVE-2018-2790, CVE-2018-2794, CVE-2018-2795, CVE-2018-2796, CVE-2018-2797, CVE-2018-2798, CVE-2018-2799, CVE-2018-2800, CVE-2018-2811, CVE-2018-2814, CVE-2018-2815, CVE-2018-2825, CVE-2018-2826, DSA-4185-1, DSA-4225-1, FEDORA-2018-40c4930c83, FEDORA-2018-579ff80ed8, FEDORA-2018-77533e644b, FEDORA-2018-9aa8064e12, ibm10713455, ibm10715641, ibm10716001, ibm10717125, ibm10717149, ibm10717207, ibm10717275, ibm10717537, ibm10718843, ibm10719319, ibm10719993, K15217245, K33924005, K44923228, K70321874, openSUSE-SU-2018:1710-1, openSUSE-SU-2018:1719-1, RHSA-2018:1188-01, RHSA-2018:1191-01, RHSA-2018:1201-01, RHSA-2018:1202-01, RHSA-2018:1203-01, RHSA-2018:1204-01, RHSA-2018:1205-01, RHSA-2018:1206-01, RHSA-2018:1270-01, RHSA-2018:1278-01, RHSA-2018:1721-01, RHSA-2018:1722-01, RHSA-2018:1723-01, RHSA-2018:1724-01, SB10234, SUSE-SU-2018:1447-1, SUSE-SU-2018:1458-1, SUSE-SU-2018:1690-1, SUSE-SU-2018:1692-1, SUSE-SU-2018:1738-1, SUSE-SU-2018:1764-1, SUSE-SU-2018:1938-1, SUSE-SU-2018:1938-2, SUSE-SU-2018:2068-1, swg22016419, USN-3644-1, USN-3691-1, USN-3747-1, USN-3747-2, VIGILANCE-VUL-25899, ZDI-18-306, ZDI-18-307.

Description of the vulnerability

Several vulnerabilities were announced in Oracle products.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about TMOS: