On platforms with an ePVA and the pva.fwdaccel BigDB variable enabled, undisclosed requests to a virtual server with a FastL4 profile that has ePVA acceleration enabled can cause the Traffic Management Microkernel (TMM) process to terminate. (CVE-2022-28705)
Impact
Traffic is disrupted while the Traffic Management Microkernel (TMM) process restarts. This vulnerability allows a remote attacker to cause a denial-of-service (DoS) on the BIG-IP system. There is no control plane exposure; this is a data plane issue only. CGNAT deployments are more likely to be affected. VCMP guests running on embedded Packet Velocity Acceleration (ePVA) platforms provisioned with only 2 CPU cores are not vulnerable.
The following conditions must be met to expose this issue: