CVE-2017-6135
HIGH
7,5
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: none
Integrity: none
Availability: high
HIGH
7,8
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: none
Confidentiality: none
Integrity: none
Availability: complete
Description
AI Translation Available
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, a slow memory leak as a result of undisclosed IPv4 or IPv6 packets sent to BIG-IP management port or self IP addresses may lead to out of memory (OOM) conditions.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,0052
Percentile
0,7th
Updated
EPSS Score Trend (Last 91 Days)
772
Missing Release of Resource after Effective Lifetime
DraftCommon Consequences
Security Scopes Affected:
Availability
Potential Impacts:
Dos: Resource Consumption (Other)
Dos: Resource Consumption (Memory)
Dos: Resource Consumption (Cpu)
Applicable Platforms
Technologies:
Mobile
Application
Big-Ip Analytics by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_analytics:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Global Traffic Manager by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_global_traffic_manager:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Application Acceleration Manager by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_application_acceleration_manager:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Policy Enforcement Manager by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Application Security Manager by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_application_security_manager:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Advanced Firewall Manager by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Dns by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_dns:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Websafe by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_websafe:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Local Traffic Manager by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Access Policy Manager by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Big-Ip Link Controller by F5
CPE Identifier
View Detailed Analysis
cpe:2.3:a:f5:big-ip_link_controller:13.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://support.f5.com/csp/article/K43322910
http://www.securitytracker.com/id/1040050
https://support.f5.com/csp/article/K43322910
http://www.securitytracker.com/id/1040050