CVE-2024-21771

Published: Feb 14, 2024Modified: Jan 23, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

For unspecified traffic patterns, BIG-IP AFM IPS engine may spend an excessive amount of time matching the traffic against signatures, resulting in Traffic Management Microkernel (TMM) restarting and traffic disruption. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

Affected (3)

Products: F5: Big Ip Advanced Firewall Manager

1 product

Big Ip Advanced Firewall Manager

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Advanced Firewall Manager	From 15.1.0 to 15.1.9
F5 Big Ip Advanced Firewall Manager	From 16.1.0 to 16.1.4
F5 Big Ip Advanced Firewall Manager	Version 17.1.0

Related CWEs

CWE-770

Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (2)

https://my.f5.com/manage/s/article/K000137595

Source: f5sirt@f5.com

Vendor Advisory

https://my.f5.com/manage/s/article/K000137595

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.