CVE-2026-42781

The CVE-2026-42781 issue affects BIG-IP with embedded ePVA acceleration enabled. A local network attacker can cause the ePVA/TMM to escalate resource utilization, degrading system performance and potentially causing DoS on vulnerable rSeries/VELOS deployments that support ePVA. That impact is a d...

CVE-2026-42781 BIG-IP FastL4 virtual server vulnerability

When embedded Packet Velocity Acceleration ePVA acceleration is configured, undisclosed local ethernet traffic can cause an increase in ePVA and Traffic Management Microkernel TMM resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

EUVD-2019-16239

Malware in sbrugna...

CVE-2019-6680

On BIG-IP versions 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5, while processing traffic through a standard virtual server that targets a FastL4 virtual server VIP on VIP, hardware appliances may stop responding...

F5 Networks BIG-IP : BIG-IP AFM vulnerability (K46048342)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.3 / 15.1.8 / 16.1.3.3 / 17.0.0.2 / 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K46048342 advisory. - On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8,...

K25573437: TMM vulnerability CVE-2018-5517

Security Advisory Description Malformed TCP packets sent to a self IP address or a FastL4 virtual server may cause an interruption of service. The control plane is not exposed to this issue. This issue impacts the data plane virtual servers and self IPs. CVE-2018-5517 Impact This vulnerability...

K17155: TMM vulnerability CVE-2015-4638

Security Advisory Description The Traffic Management Microkernel TMM may restart and produce a core file when a FastL4 virtual server processes a fragmented packet. CVE-2015-4638 Impact The Traffic Management Microkernel TMM may restart and temporarily fail to process traffic. Security Advisory...

CVE-2023-22281

On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8, 14.1.x before 14.1.5.3, and all versions of 13.1.x, when a BIG-IP AFM NAT policy with a destination NAT rule is configured on a FastL4 virtual server, undisclosed traffic can cause the Traffic Management Microkernel...

F5 BIG-IP AFM Denial of Service Vulnerability (CNVD-2023-05962)

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. A denial of service vulnerability exists in F5 BIG-IP AFM, where undisclosed traffic could cause TMM to crash when an AFM NAT...

CVE-2020-27714

On the BIG-IP AFM version 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when a Protocol Inspection Profile is attached to a FastL4 virtual server with the protocol field configured to either Other or All Protocols, the TMM may experience a restart if the profile processes non-TCP traffic...

Design/Logic Flaw

On the BIG-IP AFM version 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when a Protocol Inspection Profile is attached to a FastL4 virtual server with the protocol field configured to either Other or All Protocols, the TMM may experience a restart if the profile processes non-TCP traffic...

CVE-2020-27714

On the BIG-IP AFM version 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when a Protocol Inspection Profile is attached to a FastL4 virtual server with the protocol field configured to either Other or All Protocols, the TMM may experience a restart if the profile processes non-TCP traffic...

CVE-2020-27714

CVE-2020-27714 affects BIG-IP AFM when a Protocol Inspection Profile is attached to a FastL4 virtual server and the protocol field is set to Other or All Protocols. The underlying issue causes the Traffic Management Microkernel (TMM) to restart if the profile processes non-TCP traffic, potentiall...

F5 Networks BIG-IP : BIG-IP AFM vulnerability (K60344652)

On the BIG-IP AFM, when a Protocol Inspection Profile is attached to a FastL4 virtual server with the protocol field configured to either Other or All Protocols, the TMM may experience a restart if the profile processes non-TCP traffic. CVE-2020-27714 Impact The affected BIG-IP system may...

F5 Networks BIG-IP : Linux SACK Slowness vulnerability (K26618426)

Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment SACK sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel...

F5 Networks BIG-IP : Linux SACK Panic vulnerability (K78234183)

Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments SACKs. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182,...

F5 BIG-IP FastL4 Virtual Server Message Handling Denial of Service Vulnerability

F5 BIG-IP APM is a globally unified access and security solution for business-critical applications and networks. A security vulnerability exists in F5 BIG-IP that allows a remote attacker to exploit the vulnerability to submit a special fragmentation message that causes the TMM to reboot,...