CVE-2023-40534

Name of the Vulnerable Software and Affected Versions BIG-IP versions prior to the fixed version

Description The issue is related to errors in memory release, which can be exploited by a remote attacker to cause a denial of service. When a client-side HTTP/2 profile and the HTTP MRF Router option are enabled for a virtual server, and an iRule using the HTTP REQUEST event or Local Traffic Policy are associated with the virtual server, undisclosed requests can cause TMM to terminate.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.