CVE-2025-60016

CVE-2025-60016 affects BIG-IP/TMM when a Diffie-Hellman ECC Brainpool curve is configured in an SSL profile (Cipher Rule or Cipher Group) and that profile is applied to a virtual server. Traffic that is not disclosed can cause the Traffic Management Microkernel (TMM) to terminate, resulting in Do...

CVE-2025-46405

When Network Access is configured on a BIG-IP APM virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2020-5941

On BIG-IP versions 16.0.0-16.0.0.1 and 15.1.0-15.1.0.5, using the RESOLV::lookup command within an iRule may cause the Traffic Management Microkernel TMM to generate a core file and restart. This issue occurs when data exceeding the maximum limit of a hostname passes to the RESOLV::lookup command...

CVE-2020-27716

On versions 15.1.0-15.1.0.5, 14.1.0-14.1.3, 13.1.0-13.1.3.5, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when a BIG-IP APM virtual server processes traffic of an undisclosed nature, the Traffic Management Microkernel TMM stops responding and restarts...

F5 BIG-IP Denial of Service Vulnerability (CNVD-2018-15639)

F5 BIG-IP is a collection of software and hardware that allows you to control the traffic that passes through your network. A denial-of-service vulnerability exists in F5 BIG-IP 11.x, 12.x, and 13.x. A remote attacker could send specially crafted data during the Transport Layer Security TLS...

CVE-2017-6166

In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel TMM may crash when processing fragmented packets. This vulnerability affects TMM through a virtual server configured with a FastL4...