K13053402 : TMM vulnerability CVE-2016-7468

2017-03-2200:00:00

my.f5.com

6.6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.0%

JSON

Security Advisory Description

An unauthenticated remote attacker may be able to disrupt services on F5 BIG-IP 11.4.1 - 11.5.4 devices with maliciously crafted network traffic. This vulnerability affects virtual servers associated with TCP profiles when the BIG-IP system’s tm.tcpprogressive db variable value is set to non-default setting “enabled”. The default value for the tm.tcpprogressive db variable is “negotiate”. An attacker may be able to disrupt traffic or cause the BIG-IP system to fail over to another device in the device group. (CVE-2016-7468)

Note: Your BIG-IP system’stm.tcpprogressivedatabase variable value may have been set toenabled if you followed the mitigation steps for TMM vulnerability CVE-2016-5023: K19784568: TMM vulnerability CVE-2016-5023.

Impact

The Traffic Management Microkernel (TMM) may restart and temporarily fail to process traffic.

CPENameOperatorVersion
big-ip afmeq11.4.0
big-ip afmeq11.4.1
big-ip afmeq11.5.0
big-ip afmeq11.5.1
big-ip afmeq11.5.2
big-ip afmeq11.5.3
big-ip afmeq11.5.4
big-ip afmeq11.6.0
big-ip afmeq11.6.1
big-ip afmeq12.0.0

Name	Operator	Version
big-ip afm	eq	11.4.0
big-ip afm	eq	11.4.1
big-ip afm	eq	11.5.0
big-ip afm	eq	11.5.1
big-ip afm	eq	11.5.2
big-ip afm	eq	11.5.3
big-ip afm	eq	11.5.4
big-ip afm	eq	11.6.0
big-ip afm	eq	11.6.1
big-ip afm	eq	12.0.0

Rows per page:

1-10 of 1651