In some circumstances, the Traffic Management Microkernel (TMM) does not properly handle certain malformed Websockets requests/responses, which allows remote malicious users to cause a denial-of-service (DoS) or possible remote code execution on the F5 BIG-IP system running versions 13.0.0 - 13.1.0.3 or 12.1.0 - 12.1.3.1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
f5 big-ip local traffic manager |
||
f5 big-ip application acceleration manager |
||
f5 big-ip access policy manager |
||
f5 big-ip application security manager |
||
f5 big-ip global traffic manager |
||
f5 big-ip link controller |
||
f5 big-ip policy enforcement manager |
||
f5 big-ip domain name system |
||
f5 big-ip edge gateway |
||
f5 big-ip advanced firewall manager |
||
f5 big-ip analytics |
||
f5 big-ip webaccelerator |
||
f5 big-ip websafe 1.0.0 |