CVE-2017-6162

Name of the Vulnerable Software and Affected Versions F5 BIG-IP software versions 11.2.1, 11.4.0 through 11.5.4, 11.6.0 through 11.6.1, 12.0.0 through 12.1.2

Description The issue affects the Traffic Management Microkernel (TMM) when processing TCP traffic via a virtual server configured with a TCP profile. In some cases, TMM may crash, disrupting traffic processing until it restarts. If the affected system is part of a device group, it will trigger a failover to the peer device.

Recommendations For versions 11.2.1, consider disabling the TCP profile on virtual servers as a temporary workaround until a fix is available. For versions 11.4.0 through 11.5.4, restrict access to virtual servers configured with TCP profiles to minimize disruption. For versions 11.6.0 through 11.6.1, avoid using TCP traffic processing on affected systems until the issue is resolved. For versions 12.0.0 through 12.1.2, consider temporarily removing the affected virtual servers from the device group to prevent failovers.