CVE-2022-23024: 
F5 BIG-IP Advanced Firewall Manager vulnerability analysis and mitigation

CVE-2022-23024 affects BIG-IP Advanced Firewall Manager (AFM) versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.2, and all versions of 13.1.x. The vulnerability was discovered and disclosed in January 2022 (NVD).

When the IPsec application layer gateway (ALG) logging profile is configured on an IPsec ALG virtual server, undisclosed IPsec traffic can cause the Traffic Management Microkernel (TMM) to terminate. The vulnerability has been assigned a CVSS v3.1 Base Score of 7.5 HIGH with vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (NVD).

The vulnerability can lead to a denial of service condition through the termination of the Traffic Management Microkernel (TMM), which is a critical component of BIG-IP systems. This can potentially disrupt network traffic handling and security services (NVD).

F5 has released patched versions to address this vulnerability. Users should upgrade to version 16.1.0 or later for 16.x, version 15.1.4.1 or later for 15.1.x, or version 14.1.4.2 or later for 14.1.x. Note that software versions which have reached End of Technical Support (EoTS) are not evaluated (NVD).