ByteOS Network

Vulnerability Details :

CVE-2017-6134

Assigner-f5

Assigner Org ID-9dacffd4-cb11-413f-8451-fbbfd4ddc0ab

Published At-21 Dec, 2017 | 17:00

Updated At-16 Sep, 2024 | 23:31

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, 12.1.0 - 12.1.2 and 11.5.1 - 11.6.1, an undisclosed sequence of packets, sourced from an adjacent network may cause TMM to crash.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:f5

Assigner Org ID:9dacffd4-cb11-413f-8451-fbbfd4ddc0ab

Published At:21 Dec, 2017 | 17:00

Updated At:16 Sep, 2024 | 23:31

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

F5, Inc.

Product

BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, WebSafe

Versions

Affected

13.0.0
12.1.0 - 12.1.2
11.5.1 - 11.6.1

Problem Types

Type	CWE ID	Description
text	N/A	Denial of Service

Type: text

CWE ID: N/A

Description: Denial of Service

References

Hyperlink	Resource
http://www.securitytracker.com/id/1040045	vdb-entry x_refsource_SECTRACK
http://www.securityfocus.com/bid/102466	vdb-entry x_refsource_BID
http://www.securitytracker.com/id/1040044	vdb-entry x_refsource_SECTRACK
https://support.f5.com/csp/article/K37404773	x_refsource_CONFIRM

Hyperlink: http://www.securitytracker.com/id/1040045

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://www.securityfocus.com/bid/102466

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://www.securitytracker.com/id/1040044

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: https://support.f5.com/csp/article/K37404773

Resource:

x_refsource_CONFIRM

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.securitytracker.com/id/1040045	vdb-entry x_refsource_SECTRACK x_transferred
http://www.securityfocus.com/bid/102466	vdb-entry x_refsource_BID x_transferred
http://www.securitytracker.com/id/1040044	vdb-entry x_refsource_SECTRACK x_transferred
https://support.f5.com/csp/article/K37404773	x_refsource_CONFIRM x_transferred

Hyperlink: http://www.securitytracker.com/id/1040045

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

Hyperlink: http://www.securityfocus.com/bid/102466

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://www.securitytracker.com/id/1040044

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

Hyperlink: https://support.f5.com/csp/article/K37404773

Resource:

x_refsource_CONFIRM

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:f5sirt@f5.com

Published At:21 Dec, 2017 | 17:29

Updated At:20 Apr, 2025 | 01:37

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	6.5	MEDIUM	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	3.3	LOW	AV:A/AC:L/Au:N/C:N/I:N/A:P

Type: Primary

Version: 3.0

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 3.3

Base severity: LOW

Vector:

AV:A/AC:L/Au:N/C:N/I:N/A:P

CPE Matches

F5, Inc.

>>big-ip_local_traffic_manager>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_local_traffic_manager>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_local_traffic_manager>>13.0.0

cpe:2.3:a:f5:big-ip_local_traffic_manager:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_application_acceleration_manager>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_application_acceleration_manager>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_application_acceleration_manager>>13.0.0

cpe:2.3:a:f5:big-ip_application_acceleration_manager:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_advanced_firewall_manager>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_advanced_firewall_manager>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_advanced_firewall_manager>>13.0.0

cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_analytics>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_analytics>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_analytics>>13.0.0

cpe:2.3:a:f5:big-ip_analytics:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_access_policy_manager>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_access_policy_manager>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_access_policy_manager>>13.0.0

cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_application_security_manager>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_application_security_manager>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_application_security_manager>>13.0.0

cpe:2.3:a:f5:big-ip_application_security_manager:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_dns>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_dns:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_dns>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_dns:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_dns>>13.0.0

cpe:2.3:a:f5:big-ip_dns:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_global_traffic_manager>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_global_traffic_manager>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_global_traffic_manager>>13.0.0

cpe:2.3:a:f5:big-ip_global_traffic_manager:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_link_controller>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_link_controller>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_link_controller>>13.0.0

cpe:2.3:a:f5:big-ip_link_controller:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_policy_enforcement_manager>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_policy_enforcement_manager>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_policy_enforcement_manager>>13.0.0

cpe:2.3:a:f5:big-ip_policy_enforcement_manager:13.0.0:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_websafe>>Versions from 11.5.1(inclusive) to 11.6.1(inclusive)

cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_websafe>>Versions from 12.1.0(inclusive) to 12.1.2(inclusive)

cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*

F5, Inc.

>>big-ip_websafe>>13.0.0

cpe:2.3:a:f5:big-ip_websafe:13.0.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-20	Primary	nvd@nist.gov

CWE ID: CWE-20

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://www.securityfocus.com/bid/102466	f5sirt@f5.com	N/A
http://www.securitytracker.com/id/1040044	f5sirt@f5.com	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1040045	f5sirt@f5.com	Third Party Advisory VDB Entry
https://support.f5.com/csp/article/K37404773	f5sirt@f5.com	Issue Tracking Vendor Advisory
http://www.securityfocus.com/bid/102466	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id/1040044	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1040045	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
https://support.f5.com/csp/article/K37404773	af854a3a-2127-422b-91ae-364da2661108	Issue Tracking Vendor Advisory

Hyperlink: http://www.securityfocus.com/bid/102466

Source: f5sirt@f5.com

Resource: N/A

Hyperlink: http://www.securitytracker.com/id/1040044

Source: f5sirt@f5.com

Resource:

Third Party Advisory

VDB Entry

Hyperlink: http://www.securitytracker.com/id/1040045

Source: f5sirt@f5.com

Resource:

Third Party Advisory

VDB Entry

Hyperlink: https://support.f5.com/csp/article/K37404773

Source: f5sirt@f5.com

Resource:

Issue Tracking

Vendor Advisory

Hyperlink: http://www.securityfocus.com/bid/102466

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://www.securitytracker.com/id/1040044

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Third Party Advisory

VDB Entry

Hyperlink: http://www.securitytracker.com/id/1040045

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Third Party Advisory

VDB Entry

Hyperlink: https://support.f5.com/csp/article/K37404773

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Issue Tracking

Vendor Advisory

Similar CVEs

153Records found

CVE-2021-0172

Matching Score-4

Assigner-Intel Corporation

View Details

Matching Score-4

Assigner-Intel Corporation

CVSS Score-6.5||MEDIUM

EPSS-0.15% / 36.54%

7 Day CHG~0.00%

Published-09 Feb, 2022 | 22:04

Updated-05 May, 2025 | 17:16

Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Vendor-n/a Intel Corporation

Product-proset_ac_3165 amt_wi-fi_6_ax201 proset_ac_9462 amt_ac_9560_firmware proset_ac_8265 killer_wi-fi_6_ax1650 amt_wi-fi_6_ax201_firmware proset_ac_3165_firmware amt_ac_8265_firmware proset_ac_8260 proset_ac_9461_firmware proset_wi-fi_6_ax201_firmware proset_wi-fi_6e_ax210 proset_wireless_7265_\(rev_d\)_firmware amt_wi-fi_6_ax210_firmware proset_wi-fi_6_ax200_firmware killer_wi-fi_6_ax1650_firmware proset_wi-fi_6_ax200 proset_ac_9461 proset_ac_8260_firmware amt_wi-fi_6_ax200 amt_wi-fi_6_ax210 amt_ac_8260_firmware amt_ac_8260 killer_ac_1550_firmware amt_ac_9260_firmware proset_ac_8265_firmware proset_wireless_7265_\(rev_d\)proset_ac_9462_firmware proset_wi-fi_6_ax201 killer_wi-fi_6e_ax1675_firmware proset_wi-fi_6e_ax210_firmware proset_ac_9260 killer_wi-fi_6e_ax1675 proset_ac_9560 amt_wi-fi_6_ax200_firmware amt_ac_9260 proset_ac_9260_firmware amt_ac_8265 amt_ac_9560 proset_ac_9560_firmware killer_ac_1550 proset_ac_3168 proset_ac_3168_firmware Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11

CWE ID-CWE-20

Improper Input Validation

CVE-2021-0173

Matching Score-4

Assigner-Intel Corporation

View Details

Matching Score-4

Assigner-Intel Corporation

CVSS Score-6.5||MEDIUM

EPSS-0.15% / 36.54%

7 Day CHG~0.00%

Published-09 Feb, 2022 | 22:04

Updated-05 May, 2025 | 17:16

Improper Validation of Consistency within input in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a unauthenticated user to potentially enable denial of service via adjacent access.

Vendor-n/a Intel Corporation

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3206

Matching Score-4

Assigner-Cisco Systems, Inc.

View Details

Matching Score-4

Assigner-Cisco Systems, Inc.

CVSS Score-4.7||MEDIUM

EPSS-0.13% / 33.69%

7 Day CHG~0.00%

Published-03 Jun, 2020 | 17:40

Updated-15 Nov, 2024 | 17:18

Cisco IOS XE Software Catalyst 9800 Series Wireless Controllers Denial of Service Vulnerability

A vulnerability in the handling of IEEE 802.11w Protected Management Frames (PMFs) of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerability exists because the affected software does not properly validate 802.11w disassociation and deauthentication PMFs that it receives. An attacker could exploit this vulnerability by sending a spoofed 802.11w PMF from a valid, authenticated client on a network adjacent to an affected device. A successful exploit could allow the attacker to terminate a single valid user connection to the affected device.

Vendor-Cisco Systems, Inc.

Product-ios_xe Cisco IOS XE Software 16.10.1

CWE ID-CWE-20

Improper Input Validation

CVE-2017-6134

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs