When the BIG-IP system is provisioned with the PEM or AFM module, an undisclosed input can cause the Traffic Management Microkernel (TMM) to terminate. (CVE-2022-41813)
Impact
Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote authenticated attacker to cause a denial-of-service (DoS) on the BIG-IP system. There is no data plane exposure; this is a control plane issue only.
CPE | Name | Operator | Version |
---|---|---|---|
big-ip (afm and pem) | le | 16.1.3 |