QID 375902

Date Published: 2021-09-30

QID 375902: F5 BIG-IP Application Security Manager (ASM) Traffic Management Microkernel (TMM) Vulnerability (K05043394)

F5 BIG-IP ASM (Application Security Manager) is a flexible web application firewall that secures web applications in traditional, virtual, and private cloud environments.

When a BIG-IP ASM and DataSafe profile are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. (CVE-2021-23036)

Vulnerable Component: BIG-IP ASM

Affected Versions:
16.0.0 - 16.0.1.1

QID Detection Logic(Authenticated):
This QID checks for the vulnerable versions of F5 BIG-IP devices using the tmsh command.

Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote attacker to cause a denial-of-service (DoS) on the BIG-IP system. There is no control plane exposure; this is a data plane issue only.

  • CVSS V3 rated as High - 7.5 severity.
  • CVSS V2 rated as Medium - 4.3 severity.
  • Solution
    The vendor has released patch, for more information please visit: K05043394
    Vendor References

    CVEs related to QID 375902

    Software Advisories
    Advisory ID Software Component Link
    K05043394 URL Logo support.f5.com/csp/article/K05043394