阿里云漏洞库

漏洞描述

版本SPS_E5_04.01.04.275.0，SPS_SoC-X_04.00.04.100.0和SPS_SoC-A_04.00.04.191.0之前的Intel（R）SPS子系统中的逻辑问题可能允许特权用户潜在地通过本地访问导致拒绝服务。

解决建议

厂商已发布了漏洞修复程序，请及时关注更新：
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html

参考链接
https://support.f5.com/csp/article/K54164678?utm_source=f5support&amp%3Butm_m...
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	f5	big-ip_access_policy_manager	*	From (including) 11.5.2	Up to (including) 11.6.5
	运行在以下环境
	应用	f5	big-ip_access_policy_manager	*	From (including) 12.1.0	Up to (including) 12.1.5
	运行在以下环境
	应用	f5	big-ip_access_policy_manager	*	From (including) 13.1.0	Up to (including) 13.1.3
	运行在以下环境
	应用	f5	big-ip_access_policy_manager	*	From (including) 14.1.0	Up to (including) 14.1.2
	运行在以下环境
	应用	f5	big-ip_access_policy_manager	*	From (including) 15.0.0	Up to (including) 15.0.1
	运行在以下环境
	应用	f5	big-ip_advanced_firewall_manager	*	From (including) 11.5.2	Up to (including) 11.6.5
	运行在以下环境
	应用	f5	big-ip_advanced_firewall_manager	*	From (including) 12.1.0	Up to (including) 12.1.5
	运行在以下环境
	应用	f5	big-ip_advanced_firewall_manager	*	From (including) 13.1.0	Up to (including) 13.1.3
	运行在以下环境
	应用	f5	big-ip_advanced_firewall_manager	*	From (including) 14.1.0	Up to (including) 14.1.2
	运行在以下环境
	应用	f5	big-ip_advanced_firewall_manager	*	From (including) 15.0.0	Up to (including) 15.0.1
	运行在以下环境
	应用	f5	big-ip_analytics	*	From (including) 11.5.2	Up to (including) 11.6.5
	运行在以下环境
	应用	f5	big-ip_analytics	*	From (including) 12.1.0	Up to (including) 12.1.5
	运行在以下环境
	应用	f5	big-ip_analytics	*	From (including) 13.1.0	Up to (including) 13.1.3
	运行在以下环境
	应用	f5	big-ip_analytics	*	From (including) 14.1.0	Up to (including) 14.1.2
	运行在以下环境
	应用	f5	big-ip_analytics	*	From (including) 15.0.0	Up to (including) 15.0.1
	运行在以下环境
	应用	f5	big-ip_application_acceleration_manager	*	From (including) 11.5.2	Up to (including) 11.6.5
	运行在以下环境
	应用	f5	big-ip_application_acceleration_manager	*	From (including) 12.1.0	Up to (including) 12.1.5
	运行在以下环境
	应用	f5	big-ip_application_acceleration_manager	*	From (including) 13.1.0	Up to (including) 13.1.3
	运行在以下环境
	应用	f5	big-ip_application_acceleration_manager	*	From (including) 14.1.0	Up to (including) 14.1.2
	运行在以下环境
	应用	f5	big-ip_application_acceleration_manager	*	From (including) 15.0.0	Up to (including) 15.0.1
	运行在以下环境
	应用	f5	big-ip_application_security_manager	*	From (including) 11.5.2	Up to (including) 11.6.5
	运行在以下环境
	应用	f5	big-ip_application_security_manager	*	From (including) 12.1.0	Up to (including) 12.1.5
	运行在以下环境
	应用	f5	big-ip_application_security_manager	*	From (including) 13.1.0	Up to (including) 13.1.3
	运行在以下环境
	应用	f5	big-ip_application_security_manager	*	From (including) 14.1.0	Up to (including) 14.1.2
	运行在以下环境
	应用	f5	big-ip_application_security_manager	*	From (including) 15.0.0	Up to (including) 15.0.1
	运行在以下环境
	应用	f5	big-ip_domain_name_system	*	From (including) 11.5.2	Up to (including) 11.6.5
	运行在以下环境
	应用	f5	big-ip_domain_name_system	*	From (including) 12.1.0	Up to (including) 12.1.5
	运行在以下环境
	应用	f5	big-ip_domain_name_system	*	From (including) 13.1.0	Up to (including) 13.1.3
	运行在以下环境
	应用	f5	big-ip_domain_name_system	*	From (including) 14.1.0	Up to (including) 14.1.2
	运行在以下环境
	应用	f5	big-ip_domain_name_system	*	From (including) 15.0.0	Up to (including) 15.0.1
	运行在以下环境
	应用	f5	big-ip_fraud_protection_service	*	From (including) 11.5.2	Up to (including) 11.6.5
	运行在以下环境
应用	f5	big-ip_fraud_protection_service	*	From (including) 12.1.0	Up to (including) 12.1.5
运行在以下环境
应用	f5	big-ip_fraud_protection_service	*	From (including) 13.1.0	Up to (including) 13.1.3
运行在以下环境
应用	f5	big-ip_fraud_protection_service	*	From (including) 14.1.0	Up to (including) 14.1.2
运行在以下环境
应用	f5	big-ip_global_traffic_manager	*	From (including) 11.5.2	Up to (including) 11.6.5
运行在以下环境
应用	f5	big-ip_global_traffic_manager	*	From (including) 12.1.0	Up to (including) 12.1.5
运行在以下环境
应用	f5	big-ip_global_traffic_manager	*	From (including) 13.1.0	Up to (including) 13.1.3
运行在以下环境
应用	f5	big-ip_global_traffic_manager	*	From (including) 14.1.0	Up to (including) 14.1.2
运行在以下环境
应用	f5	big-ip_global_traffic_manager	*	From (including) 15.0.0	Up to (including) 15.0.1
运行在以下环境
应用	f5	big-ip_link_controller	*	From (including) 11.5.2	Up to (including) 11.6.5
运行在以下环境
应用	f5	big-ip_link_controller	*	From (including) 12.1.0	Up to (including) 12.1.5
运行在以下环境
应用	f5	big-ip_link_controller	*	From (including) 13.1.0	Up to (including) 13.1.3
运行在以下环境
应用	f5	big-ip_link_controller	*	From (including) 14.1.0	Up to (including) 14.1.2
运行在以下环境
应用	f5	big-ip_link_controller	*	From (including) 15.0.0	Up to (including) 15.0.1
运行在以下环境
应用	f5	big-ip_local_traffic_manager	*	From (including) 11.5.2	Up to (including) 11.6.5
运行在以下环境
应用	f5	big-ip_local_traffic_manager	*	From (including) 12.1.0	Up to (including) 12.1.5
运行在以下环境
应用	f5	big-ip_local_traffic_manager	*	From (including) 13.1.0	Up to (including) 13.1.3
运行在以下环境
应用	f5	big-ip_local_traffic_manager	*	From (including) 14.1.0	Up to (including) 14.1.2
运行在以下环境
应用	f5	big-ip_local_traffic_manager	*	From (including) 15.0.0	Up to (including) 15.0.1
运行在以下环境
应用	f5	big-ip_policy_enforcement_manager	*	From (including) 11.5.2	Up to (including) 11.6.5
运行在以下环境
应用	f5	big-ip_policy_enforcement_manager	*	From (including) 12.1.0	Up to (including) 12.1.5
运行在以下环境
应用	f5	big-ip_policy_enforcement_manager	*	From (including) 13.1.0	Up to (including) 13.1.3
运行在以下环境
应用	f5	big-ip_policy_enforcement_manager	*	From (including) 14.1.0	Up to (including) 14.1.2
运行在以下环境
应用	f5	big-ip_policy_enforcement_manager	*	From (including) 15.0.0	Up to (including) 15.0.1
运行在以下环境
系统	f5	big-ip_10000s_firmware	-	-
运行在以下环境
系统	f5	big-ip_10050s_firmware	-	-
运行在以下环境
系统	f5	big-ip_10150v-n_firmware	-	-
运行在以下环境
系统	f5	big-ip_10200v-s_firmware	-	-
运行在以下环境
系统	f5	big-ip_10250v_firmware	-	-
运行在以下环境
系统	f5	big-ip_10350v-n_firmware	-	-
运行在以下环境
系统	f5	big-ip_12250v_firmware	-	-
运行在以下环境
系统	f5	big-ip_b2250_firmware	-	-
运行在以下环境
系统	f5	big-ip_b4300_firmware	-	-
运行在以下环境
系统	f5	big-ip_b4340n_firmware	-	-
运行在以下环境
系统	f5	big-ip_b4450n_firmware	-	-
运行在以下环境
系统	f5	big-ip_i10600_firmware	-	-
运行在以下环境
系统	f5	big-ip_i10800_firmware	-	-
运行在以下环境
系统	f5	big-ip_i11600_firmware	-	-
运行在以下环境
系统	f5	big-ip_i11800_firmware	-	-
运行在以下环境
系统	f5	big-ip_i15600_firmware	-	-
运行在以下环境
系统	f5	big-ip_i15800_firmware	-	-
运行在以下环境
系统	f5	big-ip_i5600_firmware	-	-
运行在以下环境
系统	f5	big-ip_i5800_firmware	-	-
运行在以下环境
系统	f5	big-ip_i7600_firmware	-	-
运行在以下环境
系统	f5	big-ip_i7800_firmware	-	-
运行在以下环境
系统	f5	viprion_2200_firmware	-	-
运行在以下环境
系统	intel	server_platform_services_firmware	*	From (including) sps_e5_04.00.00.000.0	Up to (excluding) sps_e5_04.01.04.275.0
运行在以下环境
系统	intel	server_platform_services_firmware	*	From (including) sps_soc-a_04.00.00.000.0	Up to (excluding) sps_soc-a_04.00.04.191.0
运行在以下环境
系统	intel	server_platform_services_firmware	*	From (including) sps_soc-x_04.00.00.000.0	Up to (excluding) sps_soc-x_04.00.04.100.0
运行在以下环境
硬件	f5	big-ip_10000s	-	-
运行在以下环境
硬件	f5	big-ip_10050s	-	-
运行在以下环境
硬件	f5	big-ip_10150v-n	-	-
运行在以下环境
硬件	f5	big-ip_10200v-s	-	-
运行在以下环境
硬件	f5	big-ip_10250v	-	-
运行在以下环境
硬件	f5	big-ip_10350v-n	-	-
运行在以下环境
硬件	f5	big-ip_12250v	-	-
运行在以下环境
硬件	f5	big-ip_b2250	-	-
运行在以下环境
硬件	f5	big-ip_b4300	-	-
运行在以下环境
硬件	f5	big-ip_b4340n	-	-
运行在以下环境
硬件	f5	big-ip_b4450n	-	-
运行在以下环境
硬件	f5	big-ip_i10600	-	-
运行在以下环境
硬件	f5	big-ip_i10800	-	-
运行在以下环境
硬件	f5	big-ip_i11600	-	-
运行在以下环境
硬件	f5	big-ip_i11800	-	-
运行在以下环境
硬件	f5	big-ip_i15600	-	-
运行在以下环境
硬件	f5	big-ip_i15800	-	-
运行在以下环境
硬件	f5	big-ip_i5600	-	-
运行在以下环境
硬件	f5	big-ip_i5800	-	-
运行在以下环境
硬件	f5	big-ip_i7600	-	-
运行在以下环境
硬件	f5	big-ip_i7800	-	-
运行在以下环境
硬件	f5	viprion_2200	-	-

攻击路径

本地
攻击复杂度

低
权限要求

高
影响范围

未更改
用户交互

无
可用性

高
保密性

无
完整性

无

CWE-ID	漏洞类型
NVD-CWE-noinfo

版本SPS_E5_04.01.04.275.0，SPS_SoC-X_04.00.04.100.0和SPS_SoC-A_04.00.04.191.0之前的Intel（R）SPS子系统中的逻辑问题

漏洞描述

解决建议

参考链接

受影响软件情况