PT-2017-16907 · F5 · Big-Ip
Publicado
2017-12-21
·
Atualizado
2019-10-03
·
CVE-2017-6135
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
F5 BIG-IP software version 13.0.0
Description
A slow memory leak may occur due to undisclosed IPv4 or IPv6 packets sent to BIG-IP management port or self IP addresses, potentially leading to out of memory (OOM) conditions.
Recommendations
For version 13.0.0, consider restricting access to the management port and self IP addresses to minimize the risk of exploitation. As a temporary workaround, monitor system memory usage closely and restart the system if necessary to prevent out of memory conditions.
Correção
Missing Release of Resource after Effective Lifetime
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Big-Ip