CVE-2017-6137

medium F5
CVSS v3 Base Score
5.9
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.7%
Exploitation probability in 30 days
Top 28% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Confidentiality
None
Integrity
None
Availability
High
Published: May 9, 2017 (3291 days ago)
Last Modified: May 13, 2026
Vendor: F5
Source: NVD

Description

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, and WebSafe 11.6.1 HF1, 12.0.0 HF3, 12.0.0 HF4, and 12.1.0 through 12.1.2, undisclosed traffic patterns received while software SYN cookie protection is engaged may cause a disruption of service to the Traffic Management Microkernel (TMM) on specific platforms and configurations.

CWE

NVD-CWE-noinfo

Affected Products

f5 big-ip local traffic managerf5 big-ip application acceleration managerf5 big-ip advanced firewall managerf5 big-ip analyticsf5 big-ip access policy managerf5 big-ip application security managerf5 big-ip domain name systemf5 big-ip global traffic managerf5 big-ip link controllerf5 big-ip policy enforcement manager

References

🔗 www.securitytracker.com 🔗 support.f5.com 🔗 www.securitytracker.com 🔗 support.f5.com