On BIG-IP 14.1.0-14.1.0.5, undisclosed SSL traffic to a virtual server configured with a Client SSL profile may cause TMM to fail and restart. The Client SSL profile must have session tickets enabled and use DHE cipher suites to be affected. This only impacts the data plane, there is no impact to the control plane.
2019-07-03T18:15:10.850
2024-11-21T04:46:50.453
Modified
CVSSv3.1: 7.5 (HIGH)
AV:N/AC:M/Au:N/C:N/I:N/A:P
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | f5 | big-ip_local_traffic_manager | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_application_acceleration_manager | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_advanced_firewall_manager | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_analytics | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_access_policy_manager | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_application_security_manager | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_domain_name_system | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_edge_gateway | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_global_traffic_manager | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_link_controller | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_policy_enforcement_manager | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_webaccelerator | ≤ 14.1.0.5 | Yes |
| Application | f5 | big-ip_websafe | ≤ 14.1.0.5 | Yes |