VYPR
Unrated severityNVD Advisory· Published Aug 4, 2022· Updated Sep 16, 2024

TMM vulnerability CVE-2022-32455

CVE-2022-32455

Description

In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all versions of 13.1.x, when a BIG-IP LTM Client SSL profile is configured on a virtual server to perform client certificate authentication with session tickets enabled, undisclosed requests cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected products

2
  • F5, Inc./Big IPllm-fuzzy2 versions
    >= 13.1.0, < 13.1.5 AND >= 14.1.0, < 14.1.5 AND >= 15.1.0, < 15.1.6.1 AND >= 16.1.0, < 16.1.2.2+ 1 more
    • (no CPE)range: >= 13.1.0, < 13.1.5 AND >= 14.1.0, < 14.1.5 AND >= 15.1.0, < 15.1.6.1 AND >= 16.1.0, < 16.1.2.2
    • (no CPE)range: 13.1.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.