F5 Networks BIG-IP : vCMP Cavium Nitrox SSL hardware accelerator vulnerability (K52521791)
Medium Nessus Plugin ID 118679
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionvCMP guests running on VIPRION 2100, 4200 and 4300 series blades cannot correctly decrypt ciphertext from established SSL sessions with small MTU. (CVE-2018-5507)
The affected SSL connections are terminated unexpectedly.
ARX / BIG-IQ / Enterprise Manager / F5 iWorkflow / LineRate / Traffix SDC
There is no impact; these F5 products are not affected by this vulnerability.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K52521791.