PT-2020-18829 · F5 · F5 Big-Ip
Published
2020-10-29
·
Updated
2020-11-09
·
CVE-2020-5931
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
F5 BIG-IP versions 11.6.1 through 11.6.5.2
F5 BIG-IP versions 12.1.0 through 12.1.5.2
F5 BIG-IP versions 13.1.0 through 13.1.3.4
F5 BIG-IP versions 14.1.0 through 14.1.2.3
F5 BIG-IP versions 15.1.0 through 15.1.0.5
Description
The issue arises when virtual servers with a OneConnect profile incorrectly handle WebSockets related HTTP response headers, causing the Traffic Management Microkernel (TMM) to restart.
Recommendations
For F5 BIG-IP versions 11.6.1 through 11.6.5.2, consider disabling the OneConnect profile as a temporary workaround until a patch is available.
For F5 BIG-IP versions 12.1.0 through 12.1.5.2, consider disabling the OneConnect profile as a temporary workaround until a patch is available.
For F5 BIG-IP versions 13.1.0 through 13.1.3.4, consider disabling the OneConnect profile as a temporary workaround until a patch is available.
For F5 BIG-IP versions 14.1.0 through 14.1.2.3, consider disabling the OneConnect profile as a temporary workaround until a patch is available.
For F5 BIG-IP versions 15.1.0 through 15.1.0.5, consider disabling the OneConnect profile as a temporary workaround until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
F5 Big-Ip