Description

On BIG-IP versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8.1, 14.1.x before 14.1.5.3, and all version of 13.1.x, when a DNS profile with the Rapid Response Mode setting enabled is configured on a virtual server with hardware SYN cookies enabled, undisclosed requests cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Related CPE's

a

f5

big-ip_domain_name_system

5

a

f5

big-ip_local_traffic_manager

5

o

f5

big-ip_10000s_firmware

-

Vulnerable

h

f5

big-ip_10000s

-

o

f5

big-ip_10200v_firmware

-

Vulnerable

h

f5

big-ip_10200v

-

o

f5

big-ip_10200v-ssl_firmware

-

Vulnerable

h

f5

big-ip_10200v-ssl

-

o

f5

big-ip_12000_firmware

-

Vulnerable

h

f5

big-ip_12000

-

o

f5

big-ip_5000s_firmware

-

Vulnerable

h

f5

big-ip_5000s

-

o

f5

big-ip_5200v_firmware

-

Vulnerable

h

f5

big-ip_5200v

-

o

f5

big-ip_5200v-ssl_firmware

-

Vulnerable

h

f5

big-ip_5200v-ssl

-

o

f5

big-ip_7000s_firmware

-

Vulnerable

h

f5

big-ip_7000s

-

o

f5

big-ip_7200v_firmware

-

Vulnerable

h

f5

big-ip_7200v

-

o

f5

big-ip_7200v-ssl_firmware

-

Vulnerable

h

f5

big-ip_7200v-ssl

-

o

f5

big-ip_i10600_firmware

-

Vulnerable

h

f5

big-ip_i10600

-

o

f5

big-ip_i10800_firmware

-

Vulnerable

h

f5

big-ip_i10800

-

o

f5

big-ip_i11600_firmware

-

Vulnerable

h

f5

big-ip_i11600

-

o

f5

big-ip_i11800_firmware

-

Vulnerable

h

f5

big-ip_i11800

-

o

f5

big-ip_i15600_firmware

-

Vulnerable

h

f5

big-ip_i15600

-

o

f5

big-ip_i15800_firmware

-

Vulnerable

h

f5

big-ip_i15800

-

o

f5

big-ip_i5600_firmware

-

Vulnerable

h

f5

big-ip_i5600

-

o

f5

big-ip_i5800_firmware

-

Vulnerable

h

f5

big-ip_i5800

-

o

f5

big-ip_i7600_firmware

-

Vulnerable

h

f5

big-ip_i7600

-

o

f5

big-ip_i7800_firmware

-

Vulnerable

h

f5

big-ip_i7800

-

o

f5

r10600_firmware

-

Vulnerable

h

f5

r10600

-

o

f5

r10800_firmware

-

Vulnerable

h

f5

r10800

-

o

f5

r10900_firmware

-

Vulnerable

h

f5

r10900

-

o

f5

r5600_firmware

-

Vulnerable

h

f5

r5600

-

o

f5

r5800_firmware

-

Vulnerable

h

f5

r5800

-

o

f5

r5900_firmware

-

Vulnerable

h

f5

r5900

-

o

f5

velos_bx110_firmware

-

Vulnerable

h

f5

velos_bx110

-

o

f5

viprion_b2100_firmware

-

Vulnerable

h

f5

viprion_b2100

-

o

f5

viprion_b2150_firmware

-

Vulnerable

h

f5

viprion_b2150

-

o

f5

viprion_b2250_firmware

-

Vulnerable

h

f5

viprion_b2250

-

o

f5

viprion_b4300_firmware

-

Vulnerable

h

f5

viprion_b4300

-

o

f5

viprion_b4450_firmware

-

Vulnerable

h

f5

viprion_b4450

-

References

https://my.f5.com/manage/s/article/K37708118

Vendor Advisory

https://my.f5.com/manage/s/article/K37708118

Vendor Advisory

Weaknesses

[email protected]

Secondary
CWE-476

[email protected]

Primary
CWE-476

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-02-01T17:15:11.750Z

3 years ago

Last modified

2024-11-21T06:45:29.820Z

1 year ago