Vulnerability Details CVE-2017-6164
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator and WebSafe software version 13.0.0, 12.0.0 - 12.1.2, 11.6.0 - 11.6.1 and 11.5.0 - 11.5.4, in some circumstances, Traffic Management Microkernel (TMM) does not properly handle certain malformed TLS1.2 records, which allows remote attackers to cause a denial-of-service (DoS) or possible remote command execution on the BIG-IP system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.026
EPSS Ranking 84.7%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 6.8
References
Products affected by CVE-2017-6164
-
cpe:2.3:a:f5:big-ip_access_policy_manager:11.5.0
-
cpe:2.3:a:f5:big-ip_access_policy_manager:11.5.1
-
cpe:2.3:a:f5:big-ip_access_policy_manager:11.5.2
-
cpe:2.3:a:f5:big-ip_access_policy_manager:11.5.3
-
cpe:2.3:a:f5:big-ip_access_policy_manager:11.5.4
-
cpe:2.3:a:f5:big-ip_access_policy_manager:11.6.0
-
cpe:2.3:a:f5:big-ip_access_policy_manager:11.6.1
-
cpe:2.3:a:f5:big-ip_access_policy_manager:12.0.0
-
cpe:2.3:a:f5:big-ip_access_policy_manager:12.0.0.0
-
cpe:2.3:a:f5:big-ip_access_policy_manager:12.1.0
-
cpe:2.3:a:f5:big-ip_access_policy_manager:12.1.1
-
cpe:2.3:a:f5:big-ip_access_policy_manager:12.1.2
-
cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.0
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.1
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.2
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.3
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.4
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.6.0
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.6.1
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.0.0
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.0
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.1
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:12.1.2
-
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0
-
cpe:2.3:a:f5:big-ip_analytics:11.5.0
-
cpe:2.3:a:f5:big-ip_analytics:11.5.1
-
cpe:2.3:a:f5:big-ip_analytics:11.5.2
-
cpe:2.3:a:f5:big-ip_analytics:11.5.3
-
cpe:2.3:a:f5:big-ip_analytics:11.5.4
-
cpe:2.3:a:f5:big-ip_analytics:11.6.0
-
cpe:2.3:a:f5:big-ip_analytics:11.6.1
-
cpe:2.3:a:f5:big-ip_analytics:12.0.0
-
cpe:2.3:a:f5:big-ip_analytics:12.1.0
-
cpe:2.3:a:f5:big-ip_analytics:12.1.1
-
cpe:2.3:a:f5:big-ip_analytics:12.1.2
-
cpe:2.3:a:f5:big-ip_analytics:13.0.0
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.5.0
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.5.1
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.5.2
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.5.3
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.5.4
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.6.0
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.6.1
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:12.0.0
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:12.1.0
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:12.1.1
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:12.1.2
-
cpe:2.3:a:f5:big-ip_application_acceleration_manager:13.0.0
-
cpe:2.3:a:f5:big-ip_application_security_manager:11.5.0
-
cpe:2.3:a:f5:big-ip_application_security_manager:11.5.1
-
cpe:2.3:a:f5:big-ip_application_security_manager:11.5.2
-
cpe:2.3:a:f5:big-ip_application_security_manager:11.5.3
-
cpe:2.3:a:f5:big-ip_application_security_manager:11.5.4
-
cpe:2.3:a:f5:big-ip_application_security_manager:11.6.0
-
cpe:2.3:a:f5:big-ip_application_security_manager:11.6.1
-
cpe:2.3:a:f5:big-ip_application_security_manager:12.0.0
-
cpe:2.3:a:f5:big-ip_application_security_manager:12.1.0
-
cpe:2.3:a:f5:big-ip_application_security_manager:12.1.1
-
cpe:2.3:a:f5:big-ip_application_security_manager:12.1.2
-
cpe:2.3:a:f5:big-ip_application_security_manager:13.0.0
-
cpe:2.3:a:f5:big-ip_dns:11.5.0
-
cpe:2.3:a:f5:big-ip_dns:11.5.1
-
cpe:2.3:a:f5:big-ip_dns:11.5.2
-
cpe:2.3:a:f5:big-ip_dns:11.5.3
-
cpe:2.3:a:f5:big-ip_dns:11.5.4
-
cpe:2.3:a:f5:big-ip_dns:11.6.0
-
cpe:2.3:a:f5:big-ip_dns:12.0.0
-
cpe:2.3:a:f5:big-ip_dns:12.1.0
-
cpe:2.3:a:f5:big-ip_dns:12.1.1
-
cpe:2.3:a:f5:big-ip_dns:12.1.2
-
cpe:2.3:a:f5:big-ip_dns:13.0.0
-
cpe:2.3:a:f5:big-ip_edge_gateway:11.5.0
-
cpe:2.3:a:f5:big-ip_edge_gateway:11.5.1
-
cpe:2.3:a:f5:big-ip_edge_gateway:11.5.2
-
cpe:2.3:a:f5:big-ip_edge_gateway:11.5.3
-
cpe:2.3:a:f5:big-ip_edge_gateway:11.5.4
-
cpe:2.3:a:f5:big-ip_edge_gateway:11.6.0
-
cpe:2.3:a:f5:big-ip_edge_gateway:11.6.1
-
cpe:2.3:a:f5:big-ip_edge_gateway:12.0.0
-
cpe:2.3:a:f5:big-ip_edge_gateway:12.1.0
-
cpe:2.3:a:f5:big-ip_edge_gateway:12.1.1
-
cpe:2.3:a:f5:big-ip_edge_gateway:12.1.2
-
cpe:2.3:a:f5:big-ip_edge_gateway:13.0.0
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.0
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.1
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.2
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.3
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.4
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:11.6.0
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:11.6.1
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.0.0
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.0
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.1
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:12.1.2
-
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.0.0
-
cpe:2.3:a:f5:big-ip_link_controller:11.5.0
-
cpe:2.3:a:f5:big-ip_link_controller:11.5.1
-
cpe:2.3:a:f5:big-ip_link_controller:11.5.2
-
cpe:2.3:a:f5:big-ip_link_controller:11.5.3
-
cpe:2.3:a:f5:big-ip_link_controller:11.5.4
-
cpe:2.3:a:f5:big-ip_link_controller:11.6.0
-
cpe:2.3:a:f5:big-ip_link_controller:11.6.1
-
cpe:2.3:a:f5:big-ip_link_controller:12.0.0
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.0
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.1
-
cpe:2.3:a:f5:big-ip_link_controller:12.1.2
-
cpe:2.3:a:f5:big-ip_link_controller:13.0.0
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.0
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.1
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.2
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.3
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.4
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:11.6.0
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:11.6.1
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.0.0
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.0
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.1
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.2
-
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.0.0
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.0
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.2
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.3
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.4
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.6.0
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.6.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.0.0
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.0
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.2
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:13.0.0
-
cpe:2.3:a:f5:big-ip_webaccelerator:11.5.0
-
cpe:2.3:a:f5:big-ip_webaccelerator:11.5.1
-
cpe:2.3:a:f5:big-ip_webaccelerator:11.5.2
-
cpe:2.3:a:f5:big-ip_webaccelerator:11.5.3
-
cpe:2.3:a:f5:big-ip_webaccelerator:11.5.4
-
cpe:2.3:a:f5:big-ip_webaccelerator:11.6.0
-
cpe:2.3:a:f5:big-ip_webaccelerator:11.6.1
-
cpe:2.3:a:f5:big-ip_webaccelerator:12.0.0
-
cpe:2.3:a:f5:big-ip_webaccelerator:12.1.0
-
cpe:2.3:a:f5:big-ip_webaccelerator:12.1.1
-
cpe:2.3:a:f5:big-ip_webaccelerator:12.1.2
-
cpe:2.3:a:f5:big-ip_webaccelerator:13.0.0
-
cpe:2.3:a:f5:big-ip_websafe:11.5.0
-
cpe:2.3:a:f5:big-ip_websafe:11.5.1
-
cpe:2.3:a:f5:big-ip_websafe:11.5.2
-
cpe:2.3:a:f5:big-ip_websafe:11.5.3
-
cpe:2.3:a:f5:big-ip_websafe:11.5.4
-
cpe:2.3:a:f5:big-ip_websafe:11.6.0
-
cpe:2.3:a:f5:big-ip_websafe:11.6.1
-
cpe:2.3:a:f5:big-ip_websafe:12.0.0
-
cpe:2.3:a:f5:big-ip_websafe:12.1.0
-
cpe:2.3:a:f5:big-ip_websafe:12.1.1
-
cpe:2.3:a:f5:big-ip_websafe:12.1.2
-
cpe:2.3:a:f5:big-ip_websafe:13.0.0