F5 BIG-IP AFM
Easy fix4 remedies
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*
Easy fix4 remedies
- 17.5.0
- ~17.1.0, <= 17.1.2
- ~15.1.0, <= 15.1.10
F5 BIG-IP AFM Denial-of-Service Vulnerability
Vulnerability
Patched
A denial-of-service vulnerability has been identified in F5 BIG-IP Application Firewall Manager (AFM) versions 17.5.0, 17.1.0 through 17.1.2, and 15.1.0 through 15.1.10. When a DoS protection profile is active on a virtual server, certain undisclosed requests can lead to the termination of the Traffic Management Microkernel (TMM) process. This disruption causes a temporary outage as the TMM process restarts, allowing remote, unauthenticated attackers to create a DoS condition on the BIG-IP system.
Impact
Exploitation of this vulnerability disrupts traffic by causing the TMM process to crash and restart, creating a temporary denial-of-service condition on the BIG-IP system.
Remediation
Users can upgrade to BIG-IP versions 17.5.1, 17.1.3, or 15.1.10.8 to address this vulnerability. For more information about F5 hotfixes and point releases, refer to the F5 BIG-IP hotfix and point release matrix.
Added: Oct 15, 2025, 2:26 PM
Updated: Oct 15, 2025, 2:26 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
7.0remediation
7.9relevance
0.7threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.