CVE-2020-5942

Name of the Vulnerable Software and Affected Versions BIG-IP PEM versions 11.6.1 through 11.6.5.2 BIG-IP PEM versions 12.1.0 through 12.1.5.2 BIG-IP PEM versions 13.1.0 through 13.1.3.4 BIG-IP PEM versions 14.1.0 through 14.1.2.7 BIG-IP PEM versions 15.1.0 through 15.1.0.5 BIG-IP PEM versions 16.0.0 through 16.0.0.1

Description The issue arises when processing Capabilities-Exchange-Answer (CEA) packets with certain attributes from the Policy and Charging Rules Function (PCRF) server. This can cause the Traffic Management Microkernel (TMM) to generate a core file and restart.

Recommendations For BIG-IP PEM versions 11.6.1 through 11.6.5.2, update to a version outside of this range to resolve the issue. For BIG-IP PEM versions 12.1.0 through 12.1.5.2, update to a version outside of this range to resolve the issue. For BIG-IP PEM versions 13.1.0 through 13.1.3.4, update to a version outside of this range to resolve the issue. For BIG-IP PEM versions 14.1.0 through 14.1.2.7, update to a version outside of this range to resolve the issue. For BIG-IP PEM versions 15.1.0 through 15.1.0.5, update to a version outside of this range to resolve the issue. For BIG-IP PEM versions 16.0.0 through 16.0.0.1, update to a version outside of this range to resolve the issue.