Denial of Service Vulnerability in F5 BIG-IP 13.1.0-13.1.0.5 with HTTP/2 Profile Enabled

Denial of Service Vulnerability in F5 BIG-IP 13.1.0-13.1.0.5 with HTTP/2 Profile Enabled

CVE-2018-5514 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

On F5 BIG-IP 13.1.0-13.1.0.5, maliciously crafted HTTP/2 request frames can lead to denial of service. There is data plane exposure for virtual servers when the HTTP2 profile is enabled. There is no control plane exposure to this issue.

Learn more about our Cis Benchmark Audit For F5.