Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.9
CVSSv3

CVE-2017-6160

Published: 27/10/2017 Updated: 03/10/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Big-ip Application Acceleration Manager

Vulnerability Summary

In F5 BIG-IP AAM and PEM software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.4.1 to 11.5.4, a remote attacker may create maliciously crafted HTTP request to cause Traffic Management Microkernel (TMM) to restart and temporarily fail to process traffic. This issue is exposed on virtual servers using a Policy Enforcement profile or a Web Acceleration profile. Systems that do not have BIG-IP AAM module provisioned are not vulnerable. The Traffic Management Microkernel (TMM) may restart and temporarily fail to process traffic. Systems that do not have BIG-IP AAM or PEM module provisioned are not vulnerable.

Vulnerable Product Search on Vulmon Subscribe to Product

f5 big-ip application acceleration manager 12.1.1

f5 big-ip application acceleration manager 11.4.1

f5 big-ip application acceleration manager 11.5.4

f5 big-ip application acceleration manager 11.6.0

f5 big-ip application acceleration manager 12.0.0

f5 big-ip application acceleration manager 11.5.3

f5 big-ip application acceleration manager 11.5.2

f5 big-ip application acceleration manager 11.5.1

f5 big-ip application acceleration manager 11.5.0

f5 big-ip application acceleration manager 11.4.0

f5 big-ip application acceleration manager 11.5.5

f5 big-ip application acceleration manager 11.6.1

f5 big-ip application acceleration manager 12.1.0

f5 big-ip policy enforcement manager 11.4.0

f5 big-ip policy enforcement manager 11.4.1

f5 big-ip policy enforcement manager 12.1.0

f5 big-ip policy enforcement manager 12.0.0

f5 big-ip policy enforcement manager 11.6.0

f5 big-ip policy enforcement manager 12.1.1

f5 big-ip policy enforcement manager 11.5.4

f5 big-ip policy enforcement manager 11.5.3

f5 big-ip policy enforcement manager 11.5.2

f5 big-ip policy enforcement manager 11.5.1

f5 big-ip policy enforcement manager 11.6.1

f5 big-ip policy enforcement manager 11.5.5

f5 big-ip policy enforcement manager 11.5.0

References

NVD-CWE-noinfohttps://support.f5.com/csp/article/K19430431http://www.securitytracker.com/id/1039670http://www.securityfocus.com/bid/101632https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook