CVE-2017-6148

Summary

Responses to SOCKS proxy requests made through F5 BIG-IP version 13.0.0, 12.0.0-12.1.3.1, 11.6.1-11.6.2, or 11.5.1-11.5.5 may cause a disruption of services provided by TMM. The data plane is impacted and exposed only when a SOCKS proxy profile is attached to a Virtual Server. The control plane is not impacted by this vulnerability.

Affected Software

VendorProductVersion RangeStatus
F5 Networks, Inc.BIG-IP (LTM, AAM, AFM, APM, ASM, Link Controller, PEM, WebSafe)13.0.0affected
F5 Networks, Inc.BIG-IP (LTM, AAM, AFM, APM, ASM, Link Controller, PEM, WebSafe)12.0.0-12.1.3.1affected
F5 Networks, Inc.BIG-IP (LTM, AAM, AFM, APM, ASM, Link Controller, PEM, WebSafe)11.6.1-11.6.2affected
F5 Networks, Inc.BIG-IP (LTM, AAM, AFM, APM, ASM, Link Controller, PEM, WebSafe)11.5.1-11.5.5affected

Weaknesses

  • DoS

ADP Enrichment

CVE Program Container

Additional References

References