Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K000137595
HistoryFeb 14, 2024 - 12:00 a.m.

K000137595 : BIG-IP AFM signature matching vulnerability CVE-2024-21771

2024-02-1400:00:00
my.f5.com
19
big-ip
afm
signature matching
vulnerability
tmm
traffic disruption
ips engine
cve-2024-21771
traffic patterns
device group
protocol inspection profile

AI Score

7.7

Confidence

High

EPSS

0

Percentile

9.0%

JSON

Security Advisory Description

For unspecified traffic patterns, BIG-IP AFM IPS engine may spend an excessive amount of time matching the traffic against signatures, resulting in Traffic Management Microkernel (TMM) restarting and traffic disruption. (CVE-2024-21771)

Impact

When attackers exploit this vulnerability, the TMM restarts and the BIG-IP system temporarily fails to process traffic while it recovers. Also, devices configured in a device group may fail over.

This issue affects BIG-IP AFM systems that have the Intrusion Prevention System (IPS) license with the Protocol Inspection Profile applied on a virtual server or BIG-IP AFM network firewall rule.

Related

cvelist 1
cve 1
nessus 1
prion 1
nvd 1
f5 1
cvelist
cvelist
CVE-2024-21771 F5 AFM Signature Matching Vulnerability
2024-02-14 16:30:21
cve
cve
CVE-2024-21771
2024-02-14 17:15:11
nessus
nessus
F5 Networks BIG-IP : BIG-IP AFM signature matching vulnerability (K000137595)
2024-02-14 00:00:00
prion
prion
Code injection
2024-02-14 17:15:00
nvd
nvd
CVE-2024-21771
2024-02-14 17:15:11
f5
f5
K000138353 : Quarterly Security Notification (February 2024)
2024-02-14 00:00:00

AI Score

7.7

Confidence

High

EPSS

0

Percentile

9.0%

JSON
Related for F5:K000137595
cvelist1cve1nessus1prion1nvd1f51