K49348053 : cURL vulnerability CVE-2017-8818

2017-12-2000:00:00

my.f5.com

9.8 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.6%

JSON

Security Advisory Description

curl and libcurl before 7.57.0 on 32-bit platforms allow attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact because too little memory is allocated for interfacing to an SSL library. (CVE-2017-8818)

Impact

There is no impact; F5 products are not affected by this vulnerability.

CPENameOperatorVersion
big-ip afmeq11.5.1
big-ip afmeq11.5.2
big-ip afmeq11.5.3
big-ip afmeq11.5.4
big-ip afmeq11.5.5
big-ip afmeq11.6.1
big-ip afmeq11.6.2
big-ip afmeq12.0.0
big-ip afmeq12.1.0
big-ip afmeq12.1.1

Name	Operator	Version
big-ip afm	eq	11.5.1
big-ip afm	eq	11.5.2
big-ip afm	eq	11.5.3
big-ip afm	eq	11.5.4
big-ip afm	eq	11.5.5
big-ip afm	eq	11.6.1
big-ip afm	eq	11.6.2
big-ip afm	eq	12.0.0
big-ip afm	eq	12.1.0
big-ip afm	eq	12.1.1