CVE-2016-7467

Name of the Vulnerable Software and Affected Versions F5 BIG-IP APM versions 11.5.4 through 11.5.4 HF2 F5 BIG-IP APM versions 11.6.0 through 11.6.1 HF1 F5 BIG-IP APM versions 12.0.0 through 12.1.1

Description The TMM SSO plugin in F5 BIG-IP APM, when configured as a SAML Identity Provider with a Service Provider (SP) connector, might allow traffic to be disrupted or failover initiated when a malformed, signed SAML authentication request from an authenticated user is sent via the SP connector.

Recommendations For F5 BIG-IP APM versions 11.5.4 through 11.5.4 HF2, update to a version outside of this range to resolve the issue. For F5 BIG-IP APM versions 11.6.0 through 11.6.1 HF1, update to a version outside of this range to resolve the issue. For F5 BIG-IP APM versions 12.0.0 through 12.1.1, update to a version outside of this range to resolve the issue.