vulnerability

F5 Networks: CVE-2017-6164: K02714910: TLS vulnerability CVE-2017-6164

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Dec 20, 2017	Jan 31, 2018	Mar 26, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Dec 20, 2017

Added

Jan 31, 2018

Modified

Mar 26, 2026

Description

In some circumstances, the Traffic Management Microkernel (TMM) does not properly handle certain malformed TLS1.2 records, which allows remote attackers to cause a denial-of-service (DoS) or possible remote command execution on the BIG-IP system.

Solution

f5-big-ip-upgrade-latest

References

CVE-2017-6164
https://attackerkb.com/topics/CVE-2017-6164
CWE-20
https://my.f5.com/manage/s/article/K02714910

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report