CVE-2017-6164

🗓️ 21 Dec 2017 17:00:00Reported by f5Type

CVE-2017-6164 allows remote attackers to exploit malformed TLS1.2 records, causing DoS or remote execution.

Reporter	Title	Published	Views	Family All 7
CNVD	Denial of Service Vulnerability in Multiple F5 Products (CNVD-2018-01140)	22 Dec 201700:00	–	cnvd
Cvelist	CVE-2017-6164	21 Dec 201717:00	–	cvelist
EUVD	EUVD-2017-15229	7 Oct 202500:30	–	euvd
F5 Networks	K02714910: TLS vulnerability CVE-2017-6164	21 Feb 202318:54	–	f5
Tenable Nessus	F5 Networks BIG-IP : TLS vulnerability (K02714910)	2 Nov 201800:00	–	nessus
NVD	CVE-2017-6164	21 Dec 201717:29	–	nvd
Prion	Command injection	21 Dec 201717:29	–	prion

NVD

Node

f5 big-ip_local_traffic_managerRange11.6.0–11.6.1

f5 big-ip_local_traffic_managerRange12.0.0–12.1.2

f5 big-ip_local_traffic_managerMatch11.5.0

f5 big-ip_local_traffic_managerMatch11.5.1

f5 big-ip_local_traffic_managerMatch11.5.2

f5 big-ip_local_traffic_managerMatch11.5.3

f5 big-ip_local_traffic_managerMatch11.5.4

f5 big-ip_local_traffic_managerMatch13.0.0

Node

f5 big-ip_application_acceleration_managerRange11.6.0–11.6.1

f5 big-ip_application_acceleration_managerRange12.0.0–12.1.2

f5 big-ip_application_acceleration_managerMatch11.5.0

f5 big-ip_application_acceleration_managerMatch11.5.1

f5 big-ip_application_acceleration_managerMatch11.5.2

f5 big-ip_application_acceleration_managerMatch11.5.3

f5 big-ip_application_acceleration_managerMatch11.5.4

f5 big-ip_application_acceleration_managerMatch13.0.0

Node

f5 big-ip_advanced_firewall_managerRange11.6.0–11.6.1

f5 big-ip_advanced_firewall_managerRange12.0.0–12.1.2

f5 big-ip_advanced_firewall_managerMatch11.5.0

f5 big-ip_advanced_firewall_managerMatch11.5.1

f5 big-ip_advanced_firewall_managerMatch11.5.2

f5 big-ip_advanced_firewall_managerMatch11.5.3

f5 big-ip_advanced_firewall_managerMatch11.5.4

f5 big-ip_advanced_firewall_managerMatch13.0.0

Node

f5 big-ip_analyticsRange11.6.0–11.6.1

f5 big-ip_analyticsRange12.0.0–12.1.2

f5 big-ip_analyticsMatch11.5.0

f5 big-ip_analyticsMatch11.5.1

f5 big-ip_analyticsMatch11.5.2

f5 big-ip_analyticsMatch11.5.3

f5 big-ip_analyticsMatch11.5.4

f5 big-ip_analyticsMatch13.0.0

Node

f5 big-ip_access_policy_managerRange11.6.0–11.6.1

f5 big-ip_access_policy_managerRange12.0.0–12.1.2

f5 big-ip_access_policy_managerMatch11.5.0

f5 big-ip_access_policy_managerMatch11.5.1

f5 big-ip_access_policy_managerMatch11.5.2

f5 big-ip_access_policy_managerMatch11.5.3

f5 big-ip_access_policy_managerMatch11.5.4

f5 big-ip_access_policy_managerMatch13.0.0

Node

f5 big-ip_application_security_managerRange11.6.0–11.6.1

f5 big-ip_application_security_managerRange12.0.0–12.1.2

f5 big-ip_application_security_managerMatch11.5.0

f5 big-ip_application_security_managerMatch11.5.1

f5 big-ip_application_security_managerMatch11.5.2

f5 big-ip_application_security_managerMatch11.5.3

f5 big-ip_application_security_managerMatch11.5.4

f5 big-ip_application_security_managerMatch13.0.0

Node

f5 big-ip_dnsRange11.6.0–11.6.1

f5 big-ip_dnsRange12.0.0–12.1.2

f5 big-ip_dnsMatch11.5.0

f5 big-ip_dnsMatch11.5.1

f5 big-ip_dnsMatch11.5.2

f5 big-ip_dnsMatch11.5.3

f5 big-ip_dnsMatch11.5.4

f5 big-ip_dnsMatch13.0.0

Node

f5 big-ip_global_traffic_managerRange11.6.0–11.6.1

f5 big-ip_global_traffic_managerRange12.0.0–12.1.2

f5 big-ip_global_traffic_managerMatch11.5.0

f5 big-ip_global_traffic_managerMatch11.5.1

f5 big-ip_global_traffic_managerMatch11.5.2

f5 big-ip_global_traffic_managerMatch11.5.3

f5 big-ip_global_traffic_managerMatch11.5.4

f5 big-ip_global_traffic_managerMatch13.0.0

Node

f5 big-ip_link_controllerRange11.6.0–11.6.1

f5 big-ip_link_controllerRange12.0.0–12.1.2

f5 big-ip_link_controllerMatch11.5.0

f5 big-ip_link_controllerMatch11.5.1

f5 big-ip_link_controllerMatch11.5.2

f5 big-ip_link_controllerMatch11.5.3

f5 big-ip_link_controllerMatch11.5.4

f5 big-ip_link_controllerMatch13.0.0

Node

f5 big-ip_policy_enforcement_managerRange11.6.0–11.6.1

f5 big-ip_policy_enforcement_managerRange12.0.0–12.1.2

f5 big-ip_policy_enforcement_managerMatch11.5.0

f5 big-ip_policy_enforcement_managerMatch11.5.1

f5 big-ip_policy_enforcement_managerMatch11.5.2

f5 big-ip_policy_enforcement_managerMatch11.5.3

f5 big-ip_policy_enforcement_managerMatch11.5.4

f5 big-ip_policy_enforcement_managerMatch13.0.0

Node

f5 big-ip_websafeRange11.6.0–11.6.1

f5 big-ip_websafeRange12.0.0–12.1.2

f5 big-ip_websafeMatch11.5.0

f5 big-ip_websafeMatch11.5.1

f5 big-ip_websafeMatch11.5.2

f5 big-ip_websafeMatch11.5.3

f5 big-ip_websafeMatch11.5.4

f5 big-ip_websafeMatch13.0.0

Node

f5 big-ip_edge_gatewayRange11.6.0–11.6.1

f5 big-ip_edge_gatewayRange12.0.0–12.1.2

f5 big-ip_edge_gatewayMatch11.5.0

f5 big-ip_edge_gatewayMatch11.5.1

f5 big-ip_edge_gatewayMatch11.5.2

f5 big-ip_edge_gatewayMatch11.5.3

f5 big-ip_edge_gatewayMatch11.5.4

f5 big-ip_edge_gatewayMatch13.0.0

Node

f5 big-ip_webacceleratorRange11.6.0–11.6.1

f5 big-ip_webacceleratorRange12.0.0–12.1.2

f5 big-ip_webacceleratorMatch11.5.0

f5 big-ip_webacceleratorMatch11.5.1

f5 big-ip_webacceleratorMatch11.5.2

f5 big-ip_webacceleratorMatch11.5.3

f5 big-ip_webacceleratorMatch11.5.4

f5 big-ip_webacceleratorMatch13.0.0

[
  {
    "product": "BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator, WebSafe",
    "vendor": "F5 Networks, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "13.0.0"
      },
      {
        "status": "affected",
        "version": "12.0.0 - 12.1.2"
      },
      {
        "status": "affected",
        "version": "11.6.0 - 11.6.1"
      },
      {
        "status": "affected",
        "version": "11.5.0 - 11.5.4"
      }
    ]
  }
]

Source	Link
securitytracker	www.securitytracker.com/id/1040054
support	www.support.f5.com/csp/article/K02714910

13 May 2026 00:24Current

8.1High risk

Vulners AI Score8.1

CVSS 26.8

CVSS 38.1

EPSS0.02462

CWE-20

f5 big-ip vulnerabilities denial of service remote command execution tls records handling traffic management microkernel