PT-2021-15338 · F5 · Big-Ip
Published
2021-05-10
·
Updated
2021-05-24
·
CVE-2021-23011
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
F5 BIG-IP versions 11.6.x before 11.6.5.3
F5 BIG-IP versions 12.1.x before 12.1.6
F5 BIG-IP versions 13.1.x before 13.1.4
F5 BIG-IP versions 14.1.x before 14.1.4
F5 BIG-IP versions 15.1.x before 15.1.3
F5 BIG-IP versions 16.0.x before 16.0.1.1
Description
The issue occurs when the BIG-IP system is buffering packet fragments for reassembly, causing the Traffic Management Microkernel (TMM) to consume an excessive amount of resources. This can lead to a restart and failover event.
Recommendations
For versions 11.6.x before 11.6.5.3, update to version 11.6.5.3 or later.
For versions 12.1.x before 12.1.6, update to version 12.1.6 or later.
For versions 13.1.x before 13.1.4, update to version 13.1.4 or later.
For versions 14.1.x before 14.1.4, update to version 14.1.4 or later.
For versions 15.1.x before 15.1.3, update to version 15.1.3 or later.
For versions 16.0.x before 16.0.1.1, update to version 16.0.1.1 or later.
Fix
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Big-Ip