cvedb.io
CVE-2018-5514
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-05-02T13:29:00.473 · Last modified 2026-06-17T02:00:26.817

Summary

On F5 BIG-IP 13.1.0-13.1.0.5, maliciously crafted HTTP/2 request frames can lead to denial of service. There is data plane exposure for virtual servers when the HTTP2 profile is enabled. There is no control plane exposure to this issue.

Affected products

f5 — big-ip_local_traffic_manager

Does this affect you?

Add your gear to cvedb and we'll alert you only when f5 ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.