Medium severity5.9NVD Advisory· Published Mar 7, 2017· Updated Jun 17, 2026
CVE-2016-9245
CVE-2016-9245
Description
In F5 BIG-IP systems 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with BIG-IP APM profiles, regardless of settings. The issue is also exposed with the non-default "Normalize URI" configuration options used in iRules and/or BIG-IP LTM policies. An attacker may be able to disrupt traffic or cause the BIG-IP system to fail over to another device in the device group.
Affected products
2- Range: 12.1.0 - 12.1.2
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/96471nvdThird Party AdvisoryVDB Entry
- support.f5.com/csp/article/K22216037nvdVendor Advisory
- www.securitytracker.com/id/1037964nvd
News mentions
0No linked articles in our index yet.