The BIG-IP system is vulnerable to a denial of service attack when the MPTCP option is enabled on a virtual server. Data plane is vulnerable when using the MPTCP option of a TCP profile. There is no control plane exposure. (CVE-2017-6159)
Impact
An attacker may be able to disrupt services by causing the Traffic Management Microkernel (TMM) to restart, hence temporarily failing to process traffic.