7.8
CVSSv2

CVE-2015-5516

Published: 20/01/2016 Updated: 06/06/2019
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 694
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Summary

Memory leak in the last hop kernel module in F5 BIG-IP LTM, GTM, and Link Controller 10.1.x, 10.2.x prior to 10.2.4 HF13, 11.x prior to 11.2.1 HF15, 11.3.x, 11.4.x, 11.5.x prior to 11.5.3 HF2, and 11.6.x before HF6, BIG-IP AAM 11.4.x, 11.5.x prior to 11.5.3 HF2 and 11.6.0 before HF6, BIG-IP AFM and PEM 11.3.x, 11.4.x, 11.5.x prior to 11.5.3 HF2, and 11.6.0 before HF6, BIG-IP Analytics 11.x prior to 11.2.1 HF15, 11.3.x, 11.4.x, 11.5.x prior to 11.5.3 HF2, and 11.6.0 before HF6, BIG-IP APM and ASM 10.1.0 up to and including 10.2.4, 11.x prior to 11.2.1 HF15, 11.3.x, 11.4.x, 11.5.x prior to 11.5.3 HF2, and 11.6.0 before HF6, BIG-IP Edge Gateway, WebAccelerator, and WOM 10.1.x, 10.2.x prior to 10.2.4 HF13, 11.x prior to 11.2.1 HF15, and 11.3.0, BIG-IP PSM 10.1.x, 10.2.x prior to 10.2.4 HF13, 11.x prior to 11.2.1 HF15, 11.3.x, and 11.4.x prior to 11.4.1 HF, Enterprise Manager 3.0.0 up to and including 3.1.1, BIG-IQ Cloud and Security 4.0.0 up to and including 4.5.0, BIG-IQ Device 4.2.0 up to and including 4.5.0, and BIG-IQ ADC 4.5.0 might allow remote malicious users to cause a denial of service (memory consumption) via a large number of crafted UDP packets.

Affected Products

Vendor Product Versions
F5Big-ip Access Policy Manager10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Advanced Firewall Manager11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Analytics11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Application Acceleration Manager11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Application Security Manager10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Edge Gateway10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0
F5Big-ip Enterprise Manager3.0.0, 3.1.0, 3.1.1
F5Big-ip Global Traffic Manager10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Link Controller10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Local Traffic Manager10.0.0, 10.0.1, 10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Policy Enforcement Manager11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Protocol Security Module10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1
F5Big-ip Wan Optimization Manager10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0
F5Big-ip Webaccelerator10.1.0, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0
F5Big-iq Application Delivery Controller4.5.0
F5Big-iq Cloud4.0.0, 4.1.0, 4.2.0, 4.3.0, 4.4.0, 4.5.0
F5Big-iq Device4.2.0, 4.3.0, 4.4.0, 4.5.0
F5Big-iq Security4.0.0, 4.1.0, 4.2.0, 4.3.0, 4.4.0, 4.5.0