Lucene search
This script is Copyright (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.F5_BIGIP_SOL25033460.NASLHistoryNov 02, 2018 - 12:00 a.m.
F5 Networks BIG-IP : TMM vulnerability (K25033460)
2018-11-0200:00:00
This script is Copyright (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.003 Low
EPSS
Percentile
66.3%
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service.
(CVE-2017-6133)
Impact
The Traffic Management Microkernel (TMM) generates a core file and restarts. The BIG-IP system fails over to the peer device if configured as part of a high availability (HA) device group.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from F5 Networks BIG-IP Solution K25033460.
#
# The text description of this plugin is (C) F5 Networks.
#
include('compat.inc');
if (description)
{
script_id(118603);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/11/02");
script_cve_id("CVE-2017-6133");
script_name(english:"F5 Networks BIG-IP : TMM vulnerability (K25033460)");
script_set_attribute(attribute:"synopsis", value:
"The remote device is missing a vendor-supplied security patch.");
script_set_attribute(attribute:"description", value:
"In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller,
PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2,
undisclosed HTTP requests may cause a denial of service.
(CVE-2017-6133)
Impact
The Traffic Management Microkernel (TMM) generates a core file and
restarts. The BIG-IP system fails over to the peer device if
configured as part of a high availability (HA) device group.");
script_set_attribute(attribute:"see_also", value:"https://my.f5.com/manage/s/article/K25033460");
script_set_attribute(attribute:"solution", value:
"Upgrade to one of the non-vulnerable versions listed in the F5 Solution K25033460.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-6133");
script_set_attribute(attribute:"vuln_publication_date", value:"2017/12/21");
script_set_attribute(attribute:"patch_publication_date", value:"2017/12/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/11/02");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_access_policy_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_advanced_firewall_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_acceleration_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_security_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_visibility_and_reporting");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_domain_name_system");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_global_traffic_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_local_traffic_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"F5 Networks Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("f5_bigip_detect.nbin");
script_require_keys("Host/local_checks_enabled", "Host/BIG-IP/hotfix", "Host/BIG-IP/modules", "Host/BIG-IP/version");
exit(0);
}
include('f5_func.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var version = get_kb_item('Host/BIG-IP/version');
if ( ! version ) audit(AUDIT_OS_NOT, 'F5 Networks BIG-IP');
if ( isnull(get_kb_item('Host/BIG-IP/hotfix')) ) audit(AUDIT_KB_MISSING, 'Host/BIG-IP/hotfix');
if ( ! get_kb_item('Host/BIG-IP/modules') ) audit(AUDIT_KB_MISSING, 'Host/BIG-IP/modules');
var sol = 'K25033460';
var vmatrix = {
'AFM': {
'affected': [
'13.0.0','12.1.0-12.1.2'
],
'unaffected': [
'13.1.0','13.0.1','12.1.3'
],
},
'AM': {
'affected': [
'13.0.0','12.1.0-12.1.2'
],
'unaffected': [
'13.1.0','13.0.1','12.1.3'
],
},
'APM': {
'affected': [
'13.0.0','12.1.0-12.1.2'
],
'unaffected': [
'13.1.0','13.0.1','12.1.3'
],
},
'ASM': {
'affected': [
'13.0.0','12.1.0-12.1.2'
],
'unaffected': [
'13.1.0','13.0.1','12.1.3'
],
},
'AVR': {
'affected': [
'13.0.0','12.1.0-12.1.2'
],
'unaffected': [
'13.1.0','13.0.1','12.1.3'
],
},
'DNS': {
'affected': [
'13.0.0','12.1.0-12.1.2'
],
'unaffected': [
'13.1.0','13.0.1','12.1.3'
],
},
'LTM': {
'affected': [
'13.0.0','12.1.0-12.1.2'
],
'unaffected': [
'13.1.0','13.0.1','12.1.3'
],
}
};
if (bigip_is_affected(vmatrix:vmatrix, sol:sol))
{
var extra = NULL;
if (report_verbosity > 0) extra = bigip_report_get();
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : extra
);
}
else
{
var tested = bigip_get_tested_modules();
var audit_extra = 'For BIG-IP module(s) ' + tested + ',';
if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);
else audit(AUDIT_HOST_NOT, 'running any of the affected modules');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| f5 | big-ip_access_policy_manager | cpe:/a:f5:big-ip_access_policy_manager | |
| f5 | big-ip_advanced_firewall_manager | cpe:/a:f5:big-ip_advanced_firewall_manager | |
| f5 | big-ip_application_acceleration_manager | cpe:/a:f5:big-ip_application_acceleration_manager | |
| f5 | big-ip_application_security_manager | cpe:/a:f5:big-ip_application_security_manager | |
| f5 | big-ip_application_visibility_and_reporting | cpe:/a:f5:big-ip_application_visibility_and_reporting | |
| f5 | big-ip_domain_name_system | cpe:/a:f5:big-ip_domain_name_system | |
| f5 | big-ip_global_traffic_manager | cpe:/a:f5:big-ip_global_traffic_manager | |
| f5 | big-ip_local_traffic_manager | cpe:/a:f5:big-ip_local_traffic_manager | |
| f5 | big-ip | cpe:/h:f5:big-ip |
Related
cve
cve
CVE-2017-6133
2017-12-21 17:29:00
f5
f5
K25033460 : TMM vulnerability CVE-2017-6133
2017-12-20 00:00:00
prion
prion
Denial of service
2017-12-21 17:29:00
nvd
nvd
CVE-2017-6133
2017-12-21 17:29:00
cvelist
cvelist
CVE-2017-6133
2017-12-20 00:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.003 Low
EPSS
Percentile
66.3%
Related for F5_BIGIP_SOL25033460.NASL