In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0 and 12.0.0 - 12.1.2, undisclosed traffic patterns sent to BIG-IP virtual servers, with the TCP Fast Open and Tail Loss Probe options enabled in the associated TCP profile, may cause a disruption of service to the Traffic Management Microkernel (TMM).
2017-12-21T17:29:00.480
2025-04-20T01:37:25.860
Deferred
CVSSv3.0: 5.9 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:N/A:P
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | f5 | big-ip_local_traffic_manager | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_local_traffic_manager | 13.0.0 | Yes |
| Application | f5 | big-ip_application_acceleration_manager | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_application_acceleration_manager | 13.0.0 | Yes |
| Application | f5 | big-ip_advanced_firewall_manager | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_advanced_firewall_manager | 13.0.0 | Yes |
| Application | f5 | big-ip_analytics | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_analytics | 13.0.0 | Yes |
| Application | f5 | big-ip_access_policy_manager | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_access_policy_manager | 13.0.0 | Yes |
| Application | f5 | big-ip_application_security_manager | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_application_security_manager | 13.0.0 | Yes |
| Application | f5 | big-ip_dns | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_dns | 13.0.0 | Yes |
| Application | f5 | big-ip_global_traffic_manager | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_global_traffic_manager | 13.0.0 | Yes |
| Application | f5 | big-ip_link_controller | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_link_controller | 13.0.0 | Yes |
| Application | f5 | big-ip_policy_enforcement_manager | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_policy_enforcement_manager | 13.0.0 | Yes |
| Application | f5 | big-ip_websafe | ≤ 12.1.2 | Yes |
| Application | f5 | big-ip_websafe | 13.0.0 | Yes |