CVE-2021-23051: Input Validation
First published: Tue Sep 14 2021(Updated: )
On BIG-IP versions 15.1.0.4 through 15.1.3, when the Data Plane Development Kit (DPDK)/Elastic Network Adapter (ENA) driver is used with BIG-IP on Amazon Web Services (AWS) systems, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. This is due to an incomplete fix for CVE-2020-5862. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Credit: f5sirt@f5.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| F5 BIG-IP Access Policy Manager | >=15.1.0.4<15.1.3.1 | |
| F5 BIG-IP Advanced Firewall Manager | >=15.1.0.4<15.1.3.1 | |
| F5 Big-ip Advanced Web Application Firewall | >=15.1.0.4<15.1.3.1 | |
| F5 BIG-IP Analytics | >=15.1.0.4<15.1.3.1 | |
| F5 Big-ip Application Acceleration Manager | >=15.1.0.4<15.1.3.1 | |
| F5 BIG-IP Application Security Manager | >=15.1.0.4<15.1.3.1 | |
| F5 Big-ip Domain Name System | >=15.1.0.4<15.1.3.1 | |
| F5 Big-ip Fraud Protection Service | >=15.1.0.4<15.1.3.1 | |
| F5 Big-ip Global Traffic Manager | >=15.1.0.4<15.1.3.1 | |
| F5 Big-ip Link Controller | >=15.1.0.4<15.1.3.1 | |
| F5 Big-ip Local Traffic Manager | >=15.1.0.4<15.1.3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID of this vulnerability is CVE-2021-23051.
Which software versions are affected by this vulnerability?
BIG-IP versions 15.1.0.4 through 15.1.3 are affected by this vulnerability.
What is the severity of CVE-2021-23051?
The severity of CVE-2021-23051 is high, with a severity value of 7.5.
How does this vulnerability occur?
This vulnerability occurs when the Data Plane Development Kit (DPDK)/Elastic Network Adapter (ENA) driver is used with BIG-IP on Amazon Web Services (AWS) systems.
How can this vulnerability be exploited?
Undisclosed requests can be used to exploit this vulnerability and cause the Traffic Management Microkernel (TMM) to terminate.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-index
- vendor/f5
- canonical/f5 big-ip access policy manager
- version/f5 big-ip access policy manager/15.1.0.4
- canonical/f5 big-ip advanced firewall manager
- version/f5 big-ip advanced firewall manager/15.1.0.4
- canonical/f5 big-ip advanced web application firewall
- version/f5 big-ip advanced web application firewall/15.1.0.4
- canonical/f5 big-ip analytics
- version/f5 big-ip analytics/15.1.0.4
- canonical/f5 big-ip application acceleration manager
- version/f5 big-ip application acceleration manager/15.1.0.4
- canonical/f5 big-ip application security manager
- version/f5 big-ip application security manager/15.1.0.4
- canonical/f5 big-ip domain name system
- version/f5 big-ip domain name system/15.1.0.4
- canonical/f5 big-ip fraud protection service
- version/f5 big-ip fraud protection service/15.1.0.4
- canonical/f5 big-ip global traffic manager
- version/f5 big-ip global traffic manager/15.1.0.4
- canonical/f5 big-ip link controller
- version/f5 big-ip link controller/15.1.0.4
- canonical/f5 big-ip local traffic manager
- version/f5 big-ip local traffic manager/15.1.0.4