PT-2021-15334 · F5 · Big-Ip

Published

2021-03-31

Updated

2021-04-06

CVE-2021-23007

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions BIG-IP versions 14.1.4 through 16.0.1.1

Description The issue arises when the Traffic Management Microkernel (TMM) process handles certain undisclosed traffic, causing it to drop all fragmented IP traffic.

Recommendations For BIG-IP version 14.1.4, update to a version that is not affected by this issue. For BIG-IP version 16.0.1.1, update to a version that is not affected by this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-23007

Affected Products

Big-Ip

PT-2021-15334 · F5 · Big-Ip

CVE-2021-23007

Related Identifiers

Affected Products

References · 3