CVE-2018-5532
MEDIUMF5 BIG-IP 11.2.1-11.5.6, 11.6.0-11.6.3.1, 12.1.0-12.1.2, 13.0.0 - DNS Cache Poisoning via Revoked Record Retention
Title source: llmDescription
On F5 BIG-IP 13.0.0, 12.1.0-12.1.2, 11.6.0-11.6.3.1, or 11.2.1-11.5.6 a domain name cached within the DNS Cache of TMM may continue to be resolved by the cache even after the parent server revokes the record, if the DNS Cache is receiving a stream of requests for the cached name.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1041345
Vendor Advisory x_refsource_confirm
https://support.f5.com/csp/article/K48224824
Scores
CVSS v3
5.3
EPSS
0.0039
EPSS Percentile
60.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Details
Status
published
Products (26)
f5/big-ip_access_policy_manager
13.0.0
f5/big-ip_access_policy_manager
11.2.1 - 11.5.6
f5/big-ip_advanced_firewall_manager
13.0.0
f5/big-ip_advanced_firewall_manager
11.2.1 - 11.5.6
f5/big-ip_analytics
13.0.0
f5/big-ip_analytics
11.2.1 - 11.5.6
f5/big-ip_application_acceleration_manager
13.0.0
f5/big-ip_application_acceleration_manager
11.2.1 - 11.5.6
f5/big-ip_application_security_manager
13.0.0
f5/big-ip_application_security_manager
10.1.0 - 11.5.6
... and 16 more
Published
Jul 19, 2018
Tracked Since
Feb 18, 2026