Vulnerability Recommended Actions
If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in theVersions known to be not vulnerable column. If the table lists only an older version than what you are currently running, or does not list a non-vulnerable version, then no upgrade candidate currently exists.
**Important:**Γ Only virtual serversΓ that haveΓ NAT64 enabled are vulnerable.
To verify if your BIG-IP system has a virtual server with NAT64 enabled, perform the following procedure.
Verifying the NAT64 configuration
Impact of action: Performing the following procedure should not have a negative impact on your system.
tmsh list ltm virtual all nat64 | grep -B 1 enabled
In the following example, the configuration for a virtual server named** example1** has NAT64 enabled:
ltm virtual example1 {
Γ Γ nat64 enabled
}
Supplemental Information
Note: This link takes you to a resource outside of AskF5. The third party could remove the document without our knowledge.
support.f5.com/kb/en-us/solutions/public/0000/100/sol167.html
support.f5.com/kb/en-us/solutions/public/13000/100/sol13123.html
support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html
support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html
support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html
support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html
support.f5.comhttps://www.first.org/cvss/specification-document