PT-2017-16907 · F5 · Big-Ip
Published
2017-12-21
·
Updated
2019-10-03
·
CVE-2017-6135
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
F5 BIG-IP software version 13.0.0
Description
A slow memory leak may occur due to undisclosed IPv4 or IPv6 packets sent to BIG-IP management port or self IP addresses, potentially leading to out of memory (OOM) conditions.
Recommendations
For version 13.0.0, consider restricting access to the management port and self IP addresses to minimize the risk of exploitation. As a temporary workaround, monitor system memory usage closely and restart the system if necessary to prevent out of memory conditions.
Fix
Missing Release of Resource after Effective Lifetime
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Big-Ip