For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Venkata_Narayan's avatar
Venkata_Narayan
Icon for Nimbostratus rankNimbostratus
Jul 26, 2018

Signature ID for CVE-2018-2893

Hi Team,   Kindly advise is there any signature ID for this CVE-2018-2893? This vulnerability is related to Oracle WebLogic Server component, will this vulnerability can be detected by F5 ASM WAF?...
ASM Advanced WAF
security
Simon_Blakely's avatar
Simon_Blakely
Icon for Employee rankEmployee
Jul 26, 2018

Information on the latest Oracle security advisory and ASM is held here.

 

Oracle Periodically Security Update – Mitigating with ASM

 

There is not anything on CVE-2018-2893 yet, but as Proof of Concept code has been released in the wild, our ASM development team will be evaluating the exploit and producing a signature as rapidly as possible.