Vulnerability Name: CVE-2017-6162 (CCN-134150) Assigned: 2017-10-27 Published: 2017-10-27 Updated: 2017-11-16 Summary: In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, 11.2.1, in some cases TMM may crash when processing TCP traffic. This vulnerability affects TMM via a virtual server configured with TCP profile. Traffic processing is disrupted while Traffic Management Microkernel (TMM) restarts. If the affected BIG-IP system is configured to be part of a device group, it will trigger a failover to the peer device. CVSS v3 Severity: 5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 5.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): HighPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): High
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): High
CVSS v2 Severity: 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): MediumAuthentication (Au): NoneImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Partial
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAthentication (Au): NoneImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Complete
Vulnerability Type: CWE-119 Vulnerability Consequences: Denial of Service References: Source: MITRECVE-2017-6162 F5 BIG-IP TCP Packet Processing Flaw Lets Remote Users Cause the Target Traffic Management Microkernel (TMM) to Restart 101635 Multiple F5 BIG-IP Products CVE-2017-6162 Denial of Service Vulnerability 1039673 f5-cve20176162-dos(134150) TMM vulnerability CVE-2017-6162 https://support.f5.com/csp/article/K13421245 Vulnerable Configuration: Configuration 1 :cpe:/a:f5:big-ip_local_traffic_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* (Version >= 11.5.0 and <= 11.5.4) OR cpe:/a:f5:big-ip_local_traffic_manager:11.6.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:11.6.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:12.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:12.1.1:*:*:*:*:*:*:* Configuration 2 :cpe:/a:f5:big-ip_application_acceleration_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* (Version >= 11.5.0 and <= 11.5.4) OR cpe:/a:f5:big-ip_application_acceleration_manager:11.6.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:11.6.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:12.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_acceleration_manager:12.1.1:*:*:*:*:*:*:* Configuration 3 :cpe:/a:f5:big-ip_advanced_firewall_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* (Version >= 11.5.0 and <= 11.5.4) OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.6.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:11.6.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:12.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_advanced_firewall_manager:12.1.1:*:*:*:*:*:*:* Configuration 4 :cpe:/a:f5:big-ip_access_policy_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:* (Version >= 11.5.0 and <= 11.5.4) OR cpe:/a:f5:big-ip_access_policy_manager:11.6.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:11.6.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:12.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:12.1.1:*:*:*:*:*:*:* Configuration 5 :cpe:/a:f5:big-ip_application_security_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:* (Version >= 11.5.0 and <= 11.5.4) OR cpe:/a:f5:big-ip_application_security_manager:11.6.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:11.6.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:12.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_application_security_manager:12.1.1:*:*:*:*:*:*:* Configuration 6 :cpe:/a:f5:big-ip_link_controller:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:*:*:*:*:*:*:*:* (Version >= 11.5.0 and <= 11.5.4) OR cpe:/a:f5:big-ip_link_controller:11.6.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:11.6.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:12.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:12.1.1:*:*:*:*:*:*:* Configuration 7 :cpe:/a:f5:big-ip_policy_enforcement_manager:11.2.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:* (Version >= 11.5.0 and <= 11.5.4) OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.6.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:11.6.1:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:12.1.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_policy_enforcement_manager:12.1.1:*:*:*:*:*:*:* Configuration 8 :cpe:/a:f5:big-ip_websafe:1.0.0:*:*:*:*:*:*:* Configuration CCN 1 :cpe:/a:f5:big-ip_local_traffic_manager:12.1.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:12.1.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:12.1.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_websafe:12.1.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:12.1.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_dns:12.1.2:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_local_traffic_manager:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_analytics:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_access_policy_manager:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_dns:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.6.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_link_controller:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_pem:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_websafe:12.0.0:*:*:*:*:*:*:* OR cpe:/a:f5:big-ip_global_traffic_manager:11.6.1:*:*:*:*:*:*:* BACK
f5 big-ip local traffic manager 11.2.1
f5 big-ip local traffic manager *
f5 big-ip local traffic manager 11.6.0
f5 big-ip local traffic manager 11.6.1
f5 big-ip local traffic manager 12.0.0
f5 big-ip local traffic manager 12.1.0
f5 big-ip local traffic manager 12.1.1
f5 big-ip application acceleration manager 11.2.1
f5 big-ip application acceleration manager *
f5 big-ip application acceleration manager 11.6.0
f5 big-ip application acceleration manager 11.6.1
f5 big-ip application acceleration manager 12.0.0
f5 big-ip application acceleration manager 12.1.0
f5 big-ip application acceleration manager 12.1.1
f5 big-ip advanced firewall manager 11.2.1
f5 big-ip advanced firewall manager *
f5 big-ip advanced firewall manager 11.6.0
f5 big-ip advanced firewall manager 11.6.1
f5 big-ip advanced firewall manager 12.0.0
f5 big-ip advanced firewall manager 12.1.0
f5 big-ip advanced firewall manager 12.1.1
f5 big-ip access policy manager 11.2.1
f5 big-ip access policy manager *
f5 big-ip access policy manager 11.6.0
f5 big-ip access policy manager 11.6.1
f5 big-ip access policy manager 12.0.0
f5 big-ip access policy manager 12.1.0
f5 big-ip access policy manager 12.1.1
f5 big-ip application security manager 11.2.1
f5 big-ip application security manager *
f5 big-ip application security manager 11.6.0
f5 big-ip application security manager 11.6.1
f5 big-ip application security manager 12.0.0
f5 big-ip application security manager 12.1.0
f5 big-ip application security manager 12.1.1
f5 big-ip link controller 11.2.1
f5 big-ip link controller *
f5 big-ip link controller 11.6.0
f5 big-ip link controller 11.6.1
f5 big-ip link controller 12.0.0
f5 big-ip link controller 12.1.0
f5 big-ip link controller 12.1.1
f5 big-ip policy enforcement manager 11.2.1
f5 big-ip policy enforcement manager *
f5 big-ip policy enforcement manager 11.6.0
f5 big-ip policy enforcement manager 11.6.1
f5 big-ip policy enforcement manager 12.0.0
f5 big-ip policy enforcement manager 12.1.0
f5 big-ip policy enforcement manager 12.1.1
f5 big-ip websafe 1.0.0
f5 big-ip local traffic manager 12.1.2
f5 big-ip access policy manager 12.1.2
f5 big-ip link controller 12.1.2
f5 big-ip websafe 12.1.2
f5 big-ip analytics 12.1.2
f5 big-ip dns 12.1.2
f5 big-ip local traffic manager 12.0.0
f5 big-ip analytics 12.0.0
f5 big-ip access policy manager 12.0.0
f5 big-ip dns 12.0.0
f5 big-ip global traffic manager 11.6.0
f5 big-ip link controller 12.0.0
f5 big-ip pem 12.0.0
f5 big-ip websafe 12.0.0
f5 big-ip global traffic manager 11.6.1
Denotes that component is vulnerable