4.3
CVSSv2

CVE-2017-6136

Published: 21/12/2017 Updated: 05/01/2018
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Summary

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0 and 12.0.0 - 12.1.2, undisclosed traffic patterns sent to BIG-IP virtual servers, with the TCP Fast Open and Tail Loss Probe options enabled in the associated TCP profile, may cause a disruption of service to the Traffic Management Microkernel (TMM).

Affected Products

Vendor Product Versions
F5Big-ip Access Policy Manager12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Advanced Firewall Manager12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Analytics12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Application Acceleration Manager12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Application Security Manager12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Dns13.0.0
F5Big-ip Global Traffic Manager12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Link Controller12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Local Traffic Manager12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Policy Enforcement Manager12.1.0, 12.1.1, 12.1.2, 13.0.0
F5Big-ip Websafe12.1.0, 12.1.1, 12.1.2, 13.0.0