WebSockets are vulnerable to malicious input data attacks, therefore leading to attack. Therefore it attract the cutting edge technology vendors do the development in this place. F5 one of the famous L5 to L7 cutting edge technology vendor. Perhaps vulnerabilites happen for IT world today not a fresh news. However the webSocket itself have fundamental design limitation. The status update of CVE checklist released last night. F5 product includes in their list.
K11718033: TMM WebSocket vulnerability CVE-2018-5504
K43121447: BIG-IP Client SSL vulnerability CVE-2018-5502
Final – K15500: SSL acceleration card timing vulnerability CVE-2014-4024
K23520761: BIG-IP ASM and BIG-IP Analytics vulnerability CVE-2018-5505
K54562183: BIG-IP PEM vulnerability CVE-2018-5503