1259 matches found
CVE-2025-54805 TMM Vulnerability
When an iRule is configured on a virtual server via the declarative API, upon re-instantiation, the cleanup process can cause an increase in the Traffic Management Microkernel TMM memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not...
CVE-2025-54805 TMM Vulnerability
When an iRule is configured on a virtual server via the declarative API, upon re-instantiation, the cleanup process can cause an increase in the Traffic Management Microkernel TMM memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not...
CVE-2025-58424 BIG-IP TMM vulnerability
On BIG-IP systems, undisclosed traffic can cause data corruption and unauthorized data modification in protocols which do not have message integrity protection. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-58424 BIG-IP TMM vulnerability
On BIG-IP systems, undisclosed traffic can cause data corruption and unauthorized data modification in protocols which do not have message integrity protection. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-55669
CVE-2025-55669 affects BIG-IP, specifically the HTTP/2 vulnerability impacting the Advanced WAF/ASM stack. Undisclosed traffic can terminate the Traffic Management Microkernel (TMM), causing DoS on new connections. Connected advisories list vulnerable branches and fixes: for BIG-IP ASM the fix is...
CVE-2025-60016 BIG-IP SSL/TLS vulnerability
When Diffie-Hellman DH group Elliptic Curve Cryptography ECC Brainpool curves are configured in an SSL profile's Cipher Rule or Cipher Group, and that profile is applied to a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions...
CVE-2025-60016 BIG-IP SSL/TLS vulnerability
When Diffie-Hellman DH group Elliptic Curve Cryptography ECC Brainpool curves are configured in an SSL profile's Cipher Rule or Cipher Group, and that profile is applied to a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions...
CVE-2025-48008
CVE-2025-48008 affects BIG-IP BIG-IP Next SPK/CNF and BIG-IP when a TCP profile with MPTCP is enabled; undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate, producing a DoS condition. Remediation information in the associated advisory indicates fixes were introduced...
CVE-2025-59478
CVE-2025-59478 affects BIG-IP AFM DoS protection profile on BIG-IP devices. The issue can cause the Traffic Management Microkernel (TMM) to terminate when handling undisclosed requests, resulting in a DoS condition. Affected combinations (per vendor advisories) include BIG-IP AFM with vulnerable ...
CVE-2025-53474 BIG-IP iRules vulnerability
When an iRule using an ILX::call command is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
K000151297: BIG-IP TMM vulnerability CVE-2025-58424
Security Advisory Description On BIG-IP systems, undisclosed traffic can cause data corruption and unauthorized data modification in protocols which do not have message integrity protection. CVE-2025-58424 Impact This vulnerability may allow a remote, unauthenticated attacker to inject malicious...
K000156691: BIG-IP TMM vulnerability CVE-2025-58096
Security Advisory Description When the database variable tm.tcpudptxchecksum is configured as non-default value Software-only on a BIG-IP system, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-58096 Impact Traffic is disrupted while the TMM process...
K000151596: BIG-IP TMM vulnerability CVE-2025-54805
Security Advisory Description When an iRule is configured on a virtual server via the declarative API, upon re-instantiation, the cleanup process can cause an increase in Traffic Management Microkernel TMM memory resource utilization. CVE-2025-54805 Impact System performance degradation can occur...
F5 Networks BIG-IP : BIG-IP APM vulnerability (K000156741)
The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1.3. It is, therefore, affected by a vulnerability as referenced in the K000156741 advisory. When a BIG-IP APM access policy is configured on a virtual server, specific malicious traffi...
F5 Networks BIG-IP : BIG-IP PEM vulnerability (K000151475)
The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1. It is, therefore, affected by a vulnerability as referenced in the K000151475 advisory. When a classification profile is configured on a virtual server without an HTTP or HTTP/2...
F5 Networks BIG-IP : BIG-IP TMM vulnerability (K000156691)
The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1.3. It is, therefore, affected by a vulnerability as referenced in the K000156691 advisory. When the database variabletm.tcpudptxchecksumis configured as non-default valueSoftware-only...
F5 Networks BIG-IP : BIG-IP TMM vulnerability (K000156707)
The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1.3. It is, therefore, affected by a vulnerability as referenced in the K000156707 advisory. When a virtual server, network address translation NAT object, or secure network address...
F5 Networks BIG-IP : BIG-IP IPsec vulnerability (K000156746)
The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1. It is, therefore, affected by a vulnerability as referenced in the K000156746 advisory. When IPsec is configured on the BIG-IP system, undisclosed traffic can cause the Traffic...
F5 BIG-IP 缓冲区错误漏洞
F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, and load balancing from F5 USA. A buffer error vulnerability exists in F5 BIG-IP that stems from an undisclosed request that could cause the TMM process to terminate...
F5 BIG-IP 缓冲区错误漏洞
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, and remote access policy management. A denial-of-service vulnerability exists in BIG-IP's TMM Traffic Management Microkernel module, which arises because specific...