CVE-2017-6137
5.9
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 2.2 / Impact: 3.6
Source: NVD
Description
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, and WebSafe 11.6.1 HF1, 12.0.0 HF3, 12.0.0 HF4, and 12.1.0 through 12.1.2, undisclosed traffic patterns received while software SYN cookie protection is engaged may cause a disruption of service to the Traffic Management Microkernel (TMM) on specific platforms and configurations.
Affected (50)
Products: F5: Big Ip Local Traffic Manager, Big Ip Application Acceleration Manager, Big Ip Advanced Firewall Manager, Big Ip Analytics, Big Ip Access Policy Manager, Big Ip Application Security Manager, Big Ip Domain Name System, Big Ip Global Traffic Manager, Big Ip Link Controller, Big Ip Policy Enforcement Manager, Big Ip Websafe
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Version 12.0.0 |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.6.1 |
References (4)
Source: f5sirt@f5.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.