Undisclosed traffic patterns may lead to denial of service conditions for the BIG-IP system. The configuration which exposes this condition is the BIG-IP self IP address which is part of a VLAN group and has the Port Lockdown setting configured with anything other than “allow-all”. (CVE-2018-15320)
Impact
BIG-IP
The data plane of the BIG-IP virtual servers and the management address are not affected. The BIG-IP self IP address that has the Port Lockdown setting configured with anything other thanallow-all is affected by this vulnerability.
BIG-IQ / iWorkflow / Enterprise Manager / Traffix SDC
There is no impact on these F5 products; they are not affected by this vulnerability.