Vulners
Lucene search
F5 Networks BIG-IP : TMM vulnerability (K06045217)
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | Multiple F5 BIG-IP Products Remote Denial of Service Vulnerabilities | 31 Aug 201600:00 | – | cnvd |
 | CVE-2016-5022 | 7 Sep 201619:00 | – | cve |
 | CVE-2016-5022 | 7 Sep 201619:00 | – | cvelist |
 | EUVD-2016-5975 | 7 Oct 202500:30 | – | euvd |
 | K06045217: TMM vulnerability CVE-2016-5022 | 21 Feb 202318:54 | – | f5 |
| SOL06045217 - TMM vulnerability CVE-2016-5022 | 29 Aug 201600:00 | – | f5 |
 | CVE-2016-5022 | 7 Sep 201619:28 | – | nvd |
 | F5 BIG-IP - TMM vulnerability CVE-2016-5022 | 24 Oct 201600:00 | – | openvas |
 | Code injection | 7 Sep 201619:28 | – | prion |
| Source | Link |
|---|---|
| support | www.support.f5.com/csp/article/K06045217 |
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from F5 Networks BIG-IP Solution K06045217.
#
# The text description of this plugin is (C) F5 Networks.
#
include('compat.inc');
if (description)
{
script_id(93200);
script_version("2.12");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/27");
script_cve_id("CVE-2016-5022");
script_name(english:"F5 Networks BIG-IP : TMM vulnerability (K06045217)");
script_set_attribute(attribute:"synopsis", value:
"The remote device is missing a vendor-supplied security patch.");
script_set_attribute(attribute:"description", value:
"F5 BIG-IP LTM, Analytics, APM, ASM, and Link Controller 11.2.x before
11.2.1 HF16, 11.3.x, 11.4.x, 11.5.x before 11.5.4 HF2, 11.6.x before
11.6.1 HF1, and 12.x before 12.0.0 HF3; BIG-IP AAM, AFM, and PEM
11.4.x, 11.5.x before 11.5.4 HF2, 11.6.x before 11.6.1 HF1, and 12.x
before 12.0.0 HF3; BIG-IP DNS 12.x before 12.0.0 HF3; BIG-IP Edge
Gateway, WebAccelerator, and WOM 11.2.x before 11.2.1 HF16 and 11.3.0;
BIG-IP GTM 11.2.x before 11.2.1 HF16, 11.3.x, 11.4.x, 11.5.x before
11.5.4 HF2, and 11.6.x before 11.6.1 HF1; BIG-IP PSM 11.2.x before
11.2.1 HF16, 11.3.x, and 11.4.0 through 11.4.1; Enterprise Manager
3.1.1; BIG-IQ Cloud and Security 4.0.0 through 4.5.0; BIG-IQ Device
4.2.0 through 4.5.0; BIG-IQ ADC 4.5.0; BIG-IQ Centralized Management
5.0.0; BIG-IQ Cloud and Orchestration 1.0.0; and iWorkflow 2.0.0, when
Packet Filtering is enabled on virtual servers and possibly self IP
addresses, allow remote attackers to cause a denial of service
(Traffic Management Microkernel restart) and possibly have unspecified
other impact via crafted network traffic. (CVE-2016-5022)
Impact
The Traffic Management Microkernel (TMM) may restart and temporarily
fail to process traffic when Packet Filtering is enabled. Packet
Filtering is disabled, by default, on the BIG-IP system. When Packet
Filtering is enabled, there is additional risk if the
tm.acceptipoptions database variable is also enabled.");
script_set_attribute(attribute:"see_also", value:"https://support.f5.com/csp/article/K06045217");
script_set_attribute(attribute:"solution", value:
"Upgrade to one of the non-vulnerable versions listed in the F5
Solution K06045217.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-5022");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/09/07");
script_set_attribute(attribute:"patch_publication_date", value:"2016/08/29");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/08/30");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_access_policy_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_advanced_firewall_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_acceleration_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_security_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_visibility_and_reporting");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_global_traffic_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_link_controller");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_local_traffic_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_policy_enforcement_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_wan_optimization_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_webaccelerator");
script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip");
script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip_protocol_security_manager");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"F5 Networks Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2016-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("f5_bigip_detect.nbin");
script_require_keys("Host/local_checks_enabled", "Host/BIG-IP/hotfix", "Host/BIG-IP/modules", "Host/BIG-IP/version");
exit(0);
}
include("f5_func.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
version = get_kb_item("Host/BIG-IP/version");
if ( ! version ) audit(AUDIT_OS_NOT, "F5 Networks BIG-IP");
if ( isnull(get_kb_item("Host/BIG-IP/hotfix")) ) audit(AUDIT_KB_MISSING, "Host/BIG-IP/hotfix");
if ( ! get_kb_item("Host/BIG-IP/modules") ) audit(AUDIT_KB_MISSING, "Host/BIG-IP/modules");
sol = "K06045217";
vmatrix = make_array();
# AFM
vmatrix["AFM"] = make_array();
vmatrix["AFM"]["affected" ] = make_list("12.0.0-12.0.0HF2","11.4.0-11.6.1");
vmatrix["AFM"]["unaffected"] = make_list("12.1.0","12.0.0HF3","11.6.1HF1","11.5.4HF2");
# AM
vmatrix["AM"] = make_array();
vmatrix["AM"]["affected" ] = make_list("12.0.0-12.0.0HF2","11.4.0-11.6.1");
vmatrix["AM"]["unaffected"] = make_list("12.1.0","12.0.0HF3","11.6.1HF1","11.5.4HF2");
# APM
vmatrix["APM"] = make_array();
vmatrix["APM"]["affected" ] = make_list("12.0.0-12.0.0HF2","11.2.0-11.6.1");
vmatrix["APM"]["unaffected"] = make_list("12.1.0","12.0.0HF3","11.6.1HF1","11.5.4HF2","11.2.1HF16","11.0.0-11.1.0","10.2.1-10.2.4");
# ASM
vmatrix["ASM"] = make_array();
vmatrix["ASM"]["affected" ] = make_list("12.0.0-12.0.0HF2","11.2.0-11.6.1");
vmatrix["ASM"]["unaffected"] = make_list("12.1.0","12.0.0HF3","11.6.1HF1","11.5.4HF2","11.2.1HF16","11.0.0-11.1.0","10.2.1-10.2.4");
# AVR
vmatrix["AVR"] = make_array();
vmatrix["AVR"]["affected" ] = make_list("12.0.0-12.0.0HF2","11.2.0-11.6.1");
vmatrix["AVR"]["unaffected"] = make_list("12.1.0","12.0.0HF3","11.6.1HF1","11.5.4HF2","11.2.1HF16","11.0.0-11.1.0");
# GTM
vmatrix["GTM"] = make_array();
vmatrix["GTM"]["affected" ] = make_list("11.2.0-11.6.1");
vmatrix["GTM"]["unaffected"] = make_list("11.6.1HF1","11.5.4HF2","11.2.1HF16","11.0.0-11.1.0","10.2.1-10.2.4");
# LC
vmatrix["LC"] = make_array();
vmatrix["LC"]["affected" ] = make_list("12.0.0-12.0.0HF2","11.2.0-11.6.1");
vmatrix["LC"]["unaffected"] = make_list("12.1.0","12.0.0HF3","11.6.1HF1","11.5.4HF2","11.2.1HF16","11.0.0-11.1.0","10.2.1-10.2.4");
# LTM
vmatrix["LTM"] = make_array();
vmatrix["LTM"]["affected" ] = make_list("12.0.0-12.0.0HF2","11.2.0-11.6.1");
vmatrix["LTM"]["unaffected"] = make_list("12.1.0","12.0.0HF3","11.6.1HF1","11.5.4HF2","11.2.1HF16","11.0.0-11.1.0","10.2.1-10.2.4");
# PEM
vmatrix["PEM"] = make_array();
vmatrix["PEM"]["affected" ] = make_list("12.0.0-12.0.0HF2","11.4.0-11.6.1");
vmatrix["PEM"]["unaffected"] = make_list("12.1.0","12.0.0HF3","11.6.1HF1","11.5.4HF2");
# PSM
vmatrix["PSM"] = make_array();
vmatrix["PSM"]["affected" ] = make_list("11.2.0-11.4.1");
vmatrix["PSM"]["unaffected"] = make_list("11.2.1HF16","11.0.0-11.1.0","10.2.1-10.2.4");
# WAM
vmatrix["WAM"] = make_array();
vmatrix["WAM"]["affected" ] = make_list("11.2.0-11.3.0");
vmatrix["WAM"]["unaffected"] = make_list("11.2.1HF16","11.0.0-11.1.0","10.2.1-10.2.4");
# WOM
vmatrix["WOM"] = make_array();
vmatrix["WOM"]["affected" ] = make_list("11.2.0-11.3.0");
vmatrix["WOM"]["unaffected"] = make_list("11.2.1HF16","11.0.0-11.1.0","10.2.1-10.2.4");
if (bigip_is_affected(vmatrix:vmatrix, sol:sol))
{
if (report_verbosity > 0) security_hole(port:0, extra:bigip_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = bigip_get_tested_modules();
audit_extra = "For BIG-IP module(s) " + tested + ",";
if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);
else audit(AUDIT_HOST_NOT, "running any of the affected modules");
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
27 Jan 2026 00:00Current
7.4High risk
Vulners AI Score7.4
CVSS 27.5
CVSS 39.8
EPSS0.03457