The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the K000137090 advisory.

    CVE-2018-12121Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service     with large HTTP headers: By using a combination of many requests with maximum sized headers (almost 80 KB     per connection), and carefully timed completion of the headers, it is possible to cause the HTTP server to     abort from heap allocation failure. Attack potential is mitigated by the use of a load balancer or other     proxy layer.CVE-2018-12122Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0:
    Slowloris HTTP Denial of Service: An attacker can cause a Denial of Service (DoS) by sending headers very     slowly keeping HTTP or HTTPS connections and associated resources alive for a long period of     time.CVE-2018-12123Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Hostname     spoofing in URL parser for javascript protocol: If a Node.js application is using url.parse() to determine     the URL hostname, that hostname can be spoofed by using a mixed case javascript: (e.g. javAscript:)     protocol (other protocols are not affected). If security decisions are made about the URL based on the     hostname, they may be incorrect.

Tenable has extracted the preceding description block directly from the F5 Networks BIG-IP security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

F5 Networks BIG-IP : Node.js vulnerabilities (K000137090)

medium Nessus Plugin ID 182422

Version 1.5