CVE-2017-6150

Under certain conditions for F5 BIG-IP systems 13.0.0 or 12.1.0 - 12.1.3.1, using FastL4 profiles, when the Reassemble IP Fragments option is disabled (default), some specific large fragmented packets may restart the Traffic Management Microkernel (TMM).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
f5CNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
VendorProductVersion
f5big-ip_local_traffic_manager
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_local_traffic_manager
13.0.0
f5big-ip_application_acceleration_manager
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_application_acceleration_manager
13.0.0
f5big-ip_advanced_firewall_manager
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_advanced_firewall_manager
13.0.0
f5big-ip_analytics
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_analytics
13.0.0
f5big-ip_access_policy_manager
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_access_policy_manager
13.0.0
f5big-ip_application_security_manager
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_application_security_manager
13.0.0
f5big-ip_dns
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_dns
13.0.0
f5big-ip_link_controller
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_link_controller
13.0.0
f5big-ip_policy_enforcement_manager
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_policy_enforcement_manager
13.0.0
f5big-ip_websafe
12.1.0 ≤
𝑥
≤ 12.1.3.1
f5big-ip_websafe
13.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/103235
https://support.f5.com/csp/article/K62712037
http://www.securityfocus.com/bid/103235
https://support.f5.com/csp/article/K62712037