CVE-2021-22975
Published Feb 12, 2021
Last updated 4 years ago
Overview
- Description
- On BIG-IP version 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, and 14.1.x before 14.1.3.1, under some circumstances, Traffic Management Microkernel (TMM) may restart on the BIG-IP system while passing large bursts of traffic. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.
- Source
- f5sirt@f5.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D27EBC7C-4EE1-4574-9AFD-2868611D80B8",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6ED8C663-038B-4071-9FF9-AE609F2DA4CD",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7706F70-BF89-480E-9AA6-3FE447375138",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "86D94B31-6496-42B0-BA04-370C283C4641",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F0AC967D-8D6D-44F5-88EF-A50F18979774",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0A84A8D4-9047-46D2-9C26-03C977D47AE4",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BF641654-BDC0-4483-B6BA-D5566427E5C5",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "61BA4596-EFD4-483F-952D-4298B6CEFA9D",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B9117DA-6AA9-4704-A092-B1D426E6370D",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2F630B15-9652-477D-ACDE-BB846FAA2D92",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B462A70A-2504-4E8C-85C3-D771CDB34038",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4AE6833C-FF7C-4249-BF98-453645EEF8D9",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6FB29F87-8F6B-452A-9A9B-B7680C37CE43",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5591E2A0-9D8E-42D2-99E0-62738897762D",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "51E3E0A3-8A75-43F8-8E8A-0C07345B88FD",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0B1C52A-361A-46BD-9531-96C69F011EBC",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "50F6CC82-CAC7-426C-94F0-9E8E26CF61E0",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7BB77EFF-A064-4475-A93C-5D5BA9313724",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D288196E-3937-4531-9571-07893BEE7296",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "29A3450E-EA73-4E17-B371-92F55EF6E1A9",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "40239D12-142E-4D36-A89E-0F7AB91B665A",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95CD946B-331A-44F5-8F64-26411E909F13",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4D4B28E-43B5-4132-A4EC-B20B9F85964A",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87CA1319-92D4-4C2F-B5D4-A2E86F538007",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "91346E36-BACA-4562-9903-9E4B7EA74834",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "626E1218-868C-4328-99DA-62785C6771DF",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7FE9EF68-055B-40B2-A676-C4C7FAAF77B3",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD6C7A28-1569-44B0-BE80-7472F5ED5059",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "044F30A3-6B2E-4C38-8705-D291CD3CB287",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BD28DA4B-F671-41B8-B231-24D28682FE8F",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C78B434-86B3-49AE-B93D-3A8F743DE00F",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1D513ACA-0D21-4CE0-88C1-DCA812F62C05",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "47980A60-F9B6-47EE-AD74-4D6D03A71AD0",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B6D8C63D-D669-414C-8AF1-2F3A993D6B75",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "86607F4A-555F-4842-AFA8-34EB7484FA2E",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0901863-B55A-4C97-B9AC-B537D242D2BF",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "72914086-C966-46CF-AE19-6F70EA05FEF1",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "43CB3FEA-4127-460B-846E-81B6C985DEAA",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85065C6E-71F2-42B8-A169-51174987B8AF",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "201CB36E-0ED5-4B8E-9FCC-67643C99F3CC",
"versionEndExcluding": "14.1.3.1",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9363BF22-DA96-4691-AD24-EECF6D9FCBEB",
"versionEndExcluding": "15.1.2.1",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E4ADE8D9-D1EF-4591-AB3C-93D06BE701EC",
"versionEndExcluding": "16.0.1.1",
"versionStartIncluding": "16.0.0"
}
],
"operator": "OR"
}
]
}
]