PT-2017-16916 · F5 · F5 Big-Ip
Published
2017-12-21
·
Updated
2019-10-03
·
CVE-2017-6151
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
F5 BIG-IP software version 13.0.0
Description
The issue affects F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator, and WebSafe software. Undisclosed requests made to BIG-IP virtual servers that use the "HTTP/2 profile" may cause a disruption of service to TMM.
Recommendations
For version 13.0.0, consider disabling the use of the "HTTP/2 profile" in BIG-IP virtual servers as a temporary workaround to minimize the risk of service disruption.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
F5 Big-Ip