K79428827 : BIG-IP APM OCSP vulnerability CVE-2021-23047

Security Advisory Description

When BIG-IP APM performs Online Certificate Status Protocol (OCSP) verification of a certificate that contains Authority Information Access (AIA), undisclosed requests may cause an increase in memory use. (CVE-2021-23047)

Impact

This vulnerability allows a remote attacker to cause a degradation of service that may cause a denial-of-service (DoS) on the BIG-IP system and send OCSP AIA requests to the wrong server.