CVE-2016-9245
Severity Score
5.9
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
In F5 BIG-IP systems 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with BIG-IP APM profiles, regardless of settings. The issue is also exposed with the non-default "Normalize URI" configuration options used in iRules and/or BIG-IP LTM policies. An attacker may be able to disrupt traffic or cause the BIG-IP system to fail over to another device in the device group.
En sistemas F5 BIG-IP 12.1.0 - 12.1.2, solicitudes maliciosas realizadas a servidores virtuales con un perfil HTTP pueden provocar que el TMM se reinicie. El problema se expone con perfiles BIG-IP APM, independientemente de los ajustes. El problema también se expone con opciones de configuración "Normalize URI" no por defecto usadas en políticas iRules y/o BIG-IP LTM. Un atacante puede interrumpir el tráfico o provocar que el sistema BIG-IP conmute por error a otro dispositivo del grupo de dispositivos.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2016-11-09 CVE Reserved
- 2017-03-07 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-284: Improper Access Control
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/96471 | Third Party Advisory | |
| http://www.securitytracker.com/id/1037964 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.f5.com/csp/article/K22216037 | 2017-07-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| F5 Search vendor "F5" | Big-ip Local Traffic Manager Search vendor "F5" for product "Big-ip Local Traffic Manager" | 12.1.0 Search vendor "F5" for product "Big-ip Local Traffic Manager" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Local Traffic Manager Search vendor "F5" for product "Big-ip Local Traffic Manager" | 12.1.1 Search vendor "F5" for product "Big-ip Local Traffic Manager" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Local Traffic Manager Search vendor "F5" for product "Big-ip Local Traffic Manager" | 12.1.2 Search vendor "F5" for product "Big-ip Local Traffic Manager" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Application Acceleration Manager Search vendor "F5" for product "Big-ip Application Acceleration Manager" | 12.1.0 Search vendor "F5" for product "Big-ip Application Acceleration Manager" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Application Acceleration Manager Search vendor "F5" for product "Big-ip Application Acceleration Manager" | 12.1.1 Search vendor "F5" for product "Big-ip Application Acceleration Manager" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Application Acceleration Manager Search vendor "F5" for product "Big-ip Application Acceleration Manager" | 12.1.2 Search vendor "F5" for product "Big-ip Application Acceleration Manager" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Advanced Firewall Manager Search vendor "F5" for product "Big-ip Advanced Firewall Manager" | 12.1.0 Search vendor "F5" for product "Big-ip Advanced Firewall Manager" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Advanced Firewall Manager Search vendor "F5" for product "Big-ip Advanced Firewall Manager" | 12.1.1 Search vendor "F5" for product "Big-ip Advanced Firewall Manager" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Advanced Firewall Manager Search vendor "F5" for product "Big-ip Advanced Firewall Manager" | 12.1.2 Search vendor "F5" for product "Big-ip Advanced Firewall Manager" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Analytics Search vendor "F5" for product "Big-ip Analytics" | 12.1.0 Search vendor "F5" for product "Big-ip Analytics" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Analytics Search vendor "F5" for product "Big-ip Analytics" | 12.1.1 Search vendor "F5" for product "Big-ip Analytics" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Analytics Search vendor "F5" for product "Big-ip Analytics" | 12.1.2 Search vendor "F5" for product "Big-ip Analytics" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Access Policy Manager Search vendor "F5" for product "Big-ip Access Policy Manager" | 12.1.0 Search vendor "F5" for product "Big-ip Access Policy Manager" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Access Policy Manager Search vendor "F5" for product "Big-ip Access Policy Manager" | 12.1.1 Search vendor "F5" for product "Big-ip Access Policy Manager" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Access Policy Manager Search vendor "F5" for product "Big-ip Access Policy Manager" | 12.1.2 Search vendor "F5" for product "Big-ip Access Policy Manager" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Application Security Manager Search vendor "F5" for product "Big-ip Application Security Manager" | 12.1.0 Search vendor "F5" for product "Big-ip Application Security Manager" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Application Security Manager Search vendor "F5" for product "Big-ip Application Security Manager" | 12.1.1 Search vendor "F5" for product "Big-ip Application Security Manager" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Application Security Manager Search vendor "F5" for product "Big-ip Application Security Manager" | 12.1.2 Search vendor "F5" for product "Big-ip Application Security Manager" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Domain Name System Search vendor "F5" for product "Big-ip Domain Name System" | 12.1.0 Search vendor "F5" for product "Big-ip Domain Name System" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Domain Name System Search vendor "F5" for product "Big-ip Domain Name System" | 12.1.1 Search vendor "F5" for product "Big-ip Domain Name System" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Domain Name System Search vendor "F5" for product "Big-ip Domain Name System" | 12.1.2 Search vendor "F5" for product "Big-ip Domain Name System" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Link Controller Search vendor "F5" for product "Big-ip Link Controller" | 12.1.0 Search vendor "F5" for product "Big-ip Link Controller" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Link Controller Search vendor "F5" for product "Big-ip Link Controller" | 12.1.1 Search vendor "F5" for product "Big-ip Link Controller" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Link Controller Search vendor "F5" for product "Big-ip Link Controller" | 12.1.2 Search vendor "F5" for product "Big-ip Link Controller" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Policy Enforcement Manager Search vendor "F5" for product "Big-ip Policy Enforcement Manager" | 12.1.0 Search vendor "F5" for product "Big-ip Policy Enforcement Manager" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Policy Enforcement Manager Search vendor "F5" for product "Big-ip Policy Enforcement Manager" | 12.1.1 Search vendor "F5" for product "Big-ip Policy Enforcement Manager" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Policy Enforcement Manager Search vendor "F5" for product "Big-ip Policy Enforcement Manager" | 12.1.2 Search vendor "F5" for product "Big-ip Policy Enforcement Manager" and version "12.1.2" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Websafe Search vendor "F5" for product "Big-ip Websafe" | 12.1.0 Search vendor "F5" for product "Big-ip Websafe" and version "12.1.0" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Websafe Search vendor "F5" for product "Big-ip Websafe" | 12.1.1 Search vendor "F5" for product "Big-ip Websafe" and version "12.1.1" | - |
Affected
| ||||||
| F5 Search vendor "F5" | Big-ip Websafe Search vendor "F5" for product "Big-ip Websafe" | 12.1.2 Search vendor "F5" for product "Big-ip Websafe" and version "12.1.2" | - |
Affected
| ||||||