F5OS Appliance and Chassis Systems SNMP Memory Resource Utilization Vulnerability

A vulnerability exists in F5OS Appliance and Chassis systems with SNMP enabled, where undisclosed requests can lead to increased memory usage by the SNMP process. This can cause system performance degradation, requiring a manual or forced restart of the SNMP process to restore normal operation. On F5OS Appliance rSeries systems, this issue can disrupt running BIG-IP VE or BIG-IP NEXT tenants by causing the system to reboot. For F5OS Chassis Controller and Partitions on F5 VELOS systems, the reboot will not affect BIG-IP VE or BIG-IP NEXT tenants.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition on the affected F5OS system by degrading system performance until the SNMP process is restarted. On F5OS Appliance rSeries systems, this can disrupt active BIG-IP VE or BIG-IP NEXT tenants by causing the system to reboot. On F5OS Chassis Controller and Partitions on F5 VELOS systems, the reboot will not affect BIG-IP VE or BIG-IP NEXT tenants, but can still disrupt other operations.

Remediation

To address this vulnerability, F5OS-A users can restart the 'snmpd' and 'system_platform-stats-bridge' services. For F5OS-C systems, the 'snmpd' and 'platform-stats-bridge-cc' services should be restarted. Instructions for restarting these services can be found in the F5OS documentation.