K60344652 : BIG-IP AFM vulnerability CVE-2020-27714

2020-12-1700:00:00

my.f5.com

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.6%

JSON

Security Advisory Description

On the BIG-IP AFM, when a Protocol Inspection Profile is attached to a FastL4 virtual server with the protocol field configured to either Other or All Protocols, the TMM may experience a restart if the profile processes non-TCP traffic. (CVE-2020-27714)

Impact

The affected BIG-IP system may temporarily fail to process traffic as it recovers from a Traffic Management Microkernel (TMM) restart. If the BIG-IP system is configured for high availability (HA), it fails over to a peer system.

CPENameOperatorVersion
big-iq centralized managementeq5.4.0
big-iq centralized managementeq6.0.0
big-iq centralized managementeq6.0.1
big-iq centralized managementeq6.1.0
big-iq centralized managementeq7.0.0
big-ip afmeq11.6.1
big-ip afmeq11.6.2
big-ip afmeq11.6.3
big-ip afmeq11.6.4
big-ip afmeq11.6.5

Name	Operator	Version
big-iq centralized management	eq	5.4.0
big-iq centralized management	eq	6.0.0
big-iq centralized management	eq	6.0.1
big-iq centralized management	eq	6.1.0
big-iq centralized management	eq	7.0.0
big-ip afm	eq	11.6.1
big-ip afm	eq	11.6.2
big-ip afm	eq	11.6.3
big-ip afm	eq	11.6.4
big-ip afm	eq	11.6.5

Rows per page:

1-10 of 2251