CVE-2016-7475
published 2018-10-08CVE-2016-7475: Under some circumstances on BIG-IP 12.0.0-12.1.0, 11.6.0-11.6.1, or 11.4.0-11.5.4 HF1, the Traffic Management Microkernel (TMM) may not properly clean-up pool…
high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
Under some circumstances on BIG-IP 12.0.0-12.1.0, 11.6.0-11.6.1, or 11.4.0-11.5.4 HF1, the Traffic Management Microkernel (TMM) may not properly clean-up pool member network connections when using SPDY or HTTP/2 virtual server profiles.
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f5 | big-ip_aam | — | — |
| f5 | big-ip_access_policy_manager | 11.4.0 – 11.6.1 | — |
| f5 | big-ip_access_policy_manager | 12.0.0 – 12.1.0 | — |
| f5 | big-ip_advanced_firewall_manager | 11.4.0 – 11.6.1 | — |
| f5 | big-ip_advanced_firewall_manager | 12.0.0 – 12.1.0 | — |
| f5 | big-ip_afm | — | — |
| f5 | big-ip_apm | — | — |
| f5 | big-ip_application_acceleration_manager | 11.4.0 – 11.6.1 | — |
| f5 | big-ip_application_acceleration_manager | 12.0.0 – 12.1.0 | — |
| f5 | big-ip_application_security_manager | 11.4.0 – 11.6.1 | — |
| f5 | big-ip_application_security_manager | 12.0.0 – 12.1.0 | — |
| f5 | big-ip_asm | — | — |
| f5 | big-ip_link_controller | — | — |
| f5 | big-ip_link_controller | 11.4.0 – 11.6.1 | — |
| f5 | big-ip_link_controller | 12.0.0 – 12.1.0 | — |
| f5 | big-ip_local_traffic_manager | 11.4.0 – 11.6.1 | — |
| f5 | big-ip_local_traffic_manager | 12.0.0 – 12.1.0 | — |
| f5 | big-ip_ltm | — | — |
| f5 | big-ip_pem | — | — |
| f5 | big-ip_policy_enforcement_manager | 11.4.0 – 11.6.1 | — |
| f5 | big-ip_policy_enforcement_manager | 12.0.0 – 12.1.0 | — |
| f5 | big-ip_protocol_security_module | — | — |
| f5 | big-ip_protocol_security_module | 11.4.0 – 11.4.1 | — |
| f5_networks_inc | big-ip | — | — |