CVE-2017-6137

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 11.6.1 HF1, 12.0.0 HF3, 12.0.0 HF4, and 12.1.0 through 12.1.2

Description The issue concerns undisclosed traffic patterns that may disrupt the service to the Traffic Management Microkernel (TMM) when software SYN cookie protection is engaged. This can occur on specific platforms and configurations.

Recommendations For versions 11.6.1 HF1, 12.0.0 HF3, 12.0.0 HF4, and 12.1.0 through 12.1.2, consider temporarily disabling software SYN cookie protection as a workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.