cbcvebase.
CVE-2021-23039
published 2021-09-14

CVE-2021-23039: On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.2.8, and all versions of 13.1.x and 12.1.x, when IPSec is configured on a BIG-IP…

high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.2.8, and all versions of 13.1.x and 12.1.x, when IPSec is configured on a BIG-IP system, undisclosed requests from an authorized remote (IPSec) peer, which already has a negotiated Security Association, can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected

67 ranges· showing 25
VendorProductVersion rangeFixed in
f5big-ip_aam
f5big-ip_access_policy_manager
f5big-ip_access_policy_manager12.1.0 – 12.1.6
f5big-ip_access_policy_manager13.1.0 – 13.1.4
f5big-ip_access_policy_manager>= 14.1.0 < 14.1.2.814.1.2.8
f5big-ip_access_policy_manager>= 15.1.0 < 15.1.315.1.3
f5big-ip_access_policy_manager>= 16.0.0 < 16.0.1.216.0.1.2
f5big-ip_advanced_firewall_manager12.1.0 – 12.1.6
f5big-ip_advanced_firewall_manager13.1.0 – 13.1.4
f5big-ip_advanced_firewall_manager>= 14.1.0 < 14.1.2.814.1.2.8
f5big-ip_advanced_firewall_manager>= 15.1.0 < 15.1.315.1.3
f5big-ip_advanced_firewall_manager>= 16.0.0 < 16.0.1.216.0.1.2
f5big-ip_afm
f5big-ip_analytics
f5big-ip_analytics12.1.0 – 12.1.6
f5big-ip_analytics13.1.0 – 13.1.4
f5big-ip_analytics>= 14.1.0 < 14.1.2.814.1.2.8
f5big-ip_analytics>= 15.1.0 < 15.1.315.1.3
f5big-ip_analytics>= 16.0.0 < 16.0.1.216.0.1.2
f5big-ip_apm
f5big-ip_application_acceleration_manager12.1.0 – 12.1.6
f5big-ip_application_acceleration_manager13.1.0 – 13.1.4
f5big-ip_application_acceleration_manager>= 14.1.0 < 14.1.2.814.1.2.8
f5big-ip_application_acceleration_manager>= 15.1.0 < 15.1.315.1.3
f5big-ip_application_acceleration_manager>= 16.0.0 < 16.0.1.216.0.1.2