Lucene search

[email protected]CVE-2013-6016

HistoryOct 26, 2013 - 5:55 p.m.

CVE-2013-6016

2013-10-2617:55:03

CWE-20

[email protected]

web.nvd.nist.gov

f5 big-ip

tmm

remote attack

denial of service

cve-2013-6016

security vulnerability

nvd

6.8 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.011 Low

EPSS

Percentile

84.3%

JSON

The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, APM, ASM, Edge Gateway, GTM, Link Controller, and WOM 10.0.0 through 10.2.2 and 11.0.0; Analytics 11.0.0; PSM 9.4.0 through 9.4.8, 10.0.0 through 10.2.4, and 11.0.0 through 11.4.1; and WebAccelerator 9.4.0 through 9.4.8, 10.0.0 through 10.2.4, and 11.0.0 through 11.3.0 might change a TCP connection to the ESTABLISHED state before receiving the ACK packet, which allows remote attackers to cause a denial of service (SIGFPE or assertion failure and TMM restart) via unspecified vectors.

Affected configurations

NVD

Node

f5big-ip_global_traffic_managerMatch10.0.0

f5big-ip_global_traffic_managerMatch10.0.1

f5big-ip_global_traffic_managerMatch10.1.0

f5big-ip_global_traffic_managerMatch10.2.0

f5big-ip_global_traffic_managerMatch10.2.1

f5big-ip_global_traffic_managerMatch10.2.2

f5big-ip_global_traffic_managerMatch11.0.0

Node

f5big-ip_webacceleratorMatch9.4.0

f5big-ip_webacceleratorMatch9.4.1

f5big-ip_webacceleratorMatch9.4.2

f5big-ip_webacceleratorMatch9.4.3

f5big-ip_webacceleratorMatch9.4.4

f5big-ip_webacceleratorMatch9.4.5

f5big-ip_webacceleratorMatch9.4.6

f5big-ip_webacceleratorMatch9.4.7

f5big-ip_webacceleratorMatch9.4.8

f5big-ip_webacceleratorMatch10.0.0

f5big-ip_webacceleratorMatch10.0.1

f5big-ip_webacceleratorMatch10.1.0

f5big-ip_webacceleratorMatch10.2.0

f5big-ip_webacceleratorMatch10.2.1

f5big-ip_webacceleratorMatch10.2.2

f5big-ip_webacceleratorMatch10.2.3

f5big-ip_webacceleratorMatch10.2.4

f5big-ip_webacceleratorMatch11.0.0

f5big-ip_webacceleratorMatch11.1.0

f5big-ip_webacceleratorMatch11.2.0

f5big-ip_webacceleratorMatch11.2.1

f5big-ip_webacceleratorMatch11.3.0

Node

f5big-ip_local_traffic_managerMatch10.0.0

f5big-ip_local_traffic_managerMatch10.0.1

f5big-ip_local_traffic_managerMatch10.1.0

f5big-ip_local_traffic_managerMatch10.2.0

f5big-ip_local_traffic_managerMatch10.2.1

f5big-ip_local_traffic_managerMatch10.2.2

f5big-ip_local_traffic_managerMatch11.0.0

Node

f5big-ip_application_security_managerMatch10.0.0

f5big-ip_application_security_managerMatch10.0.1

f5big-ip_application_security_managerMatch10.1.0

f5big-ip_application_security_managerMatch10.2.0

f5big-ip_application_security_managerMatch10.2.1

f5big-ip_application_security_managerMatch10.2.2

f5big-ip_application_security_managerMatch11.0.0

Node

f5big-ip_access_policy_managerMatch10.1.0

f5big-ip_access_policy_managerMatch10.2.0

f5big-ip_access_policy_managerMatch10.2.1

f5big-ip_access_policy_managerMatch10.2.2

f5big-ip_access_policy_managerMatch11.0.0

Node

f5big-ip_wan_optimization_managerMatch10.0.0

f5big-ip_wan_optimization_managerMatch10.0.1

f5big-ip_wan_optimization_managerMatch10.1.0

f5big-ip_wan_optimization_managerMatch10.2.0

f5big-ip_wan_optimization_managerMatch10.2.1

f5big-ip_wan_optimization_managerMatch10.2.2

f5big-ip_wan_optimization_managerMatch11.0.0

Node

f5big-ip_edge_gatewayMatch10.1.0

f5big-ip_edge_gatewayMatch10.2.0

f5big-ip_edge_gatewayMatch10.2.1

f5big-ip_edge_gatewayMatch10.2.2

f5big-ip_edge_gatewayMatch11.0.0

Node

f5big-ip_protocol_security_moduleMatch9.4.5

f5big-ip_protocol_security_moduleMatch9.4.6

f5big-ip_protocol_security_moduleMatch9.4.7

f5big-ip_protocol_security_moduleMatch9.4.8

f5big-ip_protocol_security_moduleMatch10.0.0

f5big-ip_protocol_security_moduleMatch10.0.1

f5big-ip_protocol_security_moduleMatch10.1.0

f5big-ip_protocol_security_moduleMatch10.2.0

f5big-ip_protocol_security_moduleMatch10.2.1

f5big-ip_protocol_security_moduleMatch10.2.2

f5big-ip_protocol_security_moduleMatch10.2.3

f5big-ip_protocol_security_moduleMatch10.2.4

f5big-ip_protocol_security_moduleMatch11.0.0

f5big-ip_protocol_security_moduleMatch11.1.0

f5big-ip_protocol_security_moduleMatch11.2.0

f5big-ip_protocol_security_moduleMatch11.2.1

f5big-ip_protocol_security_moduleMatch11.3.0

f5big-ip_protocol_security_moduleMatch11.4.0

f5big-ip_protocol_security_moduleMatch11.4.1

Node

f5big-ip_link_controllerMatch10.0.0

f5big-ip_link_controllerMatch10.0.1

f5big-ip_link_controllerMatch10.1.0

f5big-ip_link_controllerMatch10.2.0

f5big-ip_link_controllerMatch10.2.1

f5big-ip_link_controllerMatch10.2.2

f5big-ip_link_controllerMatch11.0.0

CPENameOperatorVersion
f5:big-ip_global_traffic_managerf5 big-ip global traffic managereq10.0.0
f5:big-ip_global_traffic_managerf5 big-ip global traffic managereq10.0.1
f5:big-ip_global_traffic_managerf5 big-ip global traffic managereq10.1.0
f5:big-ip_global_traffic_managerf5 big-ip global traffic managereq10.2.0
f5:big-ip_global_traffic_managerf5 big-ip global traffic managereq10.2.1
f5:big-ip_global_traffic_managerf5 big-ip global traffic managereq10.2.2
f5:big-ip_global_traffic_managerf5 big-ip global traffic managereq11.0.0

CPE	Name	Operator	Version
f5:big-ip_global_traffic_manager	f5 big-ip global traffic manager	eq	10.0.0
f5:big-ip_global_traffic_manager	f5 big-ip global traffic manager	eq	10.0.1
f5:big-ip_global_traffic_manager	f5 big-ip global traffic manager	eq	10.1.0
f5:big-ip_global_traffic_manager	f5 big-ip global traffic manager	eq	10.2.0
f5:big-ip_global_traffic_manager	f5 big-ip global traffic manager	eq	10.2.1
f5:big-ip_global_traffic_manager	f5 big-ip global traffic manager	eq	10.2.2
f5:big-ip_global_traffic_manager	f5 big-ip global traffic manager	eq	11.0.0