K95117754 : TMM vulnerability CVE-2019-6684

Security Advisory Description

Under certain conditions, a multi-bladed BIG-IP Virtual Clustered Multiprocessing (vCMP) may drop broadcast packets when they are rebroadcast to the vCMP guest secondary blades. An attacker can leverage the fragmented broadcast IP packets to perform any type of fragmentation-based attack. (CVE-2019-6684)

Impact

A remote attacker may cause the Traffic Management Microkernel (TMM) to restart using maliciously constructed broadcast IP fragments. This issue occurs on multi-blade chassis, including multi-blade vCMP guests. This issue does not occur on single-bladed systems, on BIG-IP Virtual Edition (VE), or on single-bladed vCMP guests.