When a BIG-IP DNS resolver-enabled, HTTP-Explicit or SOCKS profile is configured on a virtual server, an undisclosed DNS response can cause the Traffic Management Microkernel (TMM) process to terminate. (CVE-2022-28708)
Impact
Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote unauthenticated attacker to cause a denial-of-service (DoS) on the BIG-IP system. There is no control plane issue; this is a data plane issue only.
CPE | Name | Operator | Version |
---|---|---|---|
big-ip (all modules) | le | 16.1.2 |