CVE-2018-15323

Name of the Vulnerable Software and Affected Versions BIG-IP versions 13.0.0 through 13.1.1.1 BIG-IP versions 14.0.0 through 14.0.0.2

Description The issue occurs when processing traffic through a Virtual Server with an associated MQTT profile, under certain circumstances, causing the TMM process to produce a core file and take the configured HA action.

Recommendations For BIG-IP versions 13.0.0 through 13.1.1.1, consider restricting the use of MQTT profiles in Virtual Servers until a fix is available. For BIG-IP versions 14.0.0 through 14.0.0.2, consider restricting the use of MQTT profiles in Virtual Servers until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.