CVE-2018-5548
CVE-2018-5548
On BIG-IP APM 11.6.0-11.6.3, an insecure AES ECB mode is used for orig_uri parameter in an undisclosed /vdesk link of APM virtual server configured with an access profile, allowing a malicious user to build a redirect URI value using different blocks of cipher texts.
Produtos afetados
F5 Networks, Inc. · BIG-IP APMQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →