CVE-2024-21771: 
F5 BIG-IP Advanced Firewall Manager vulnerability analysis and mitigation

A vulnerability identified as CVE-2024-21771 affects BIG-IP AFM IPS engine. For unspecified traffic patterns, the engine may spend an excessive amount of time matching traffic against signatures, resulting in Traffic Management Microkernel (TMM) restarting and traffic disruption. The vulnerability was disclosed on February 14, 2024, and affects BIG-IP AFM + IPS versions 15.1.0-15.1.8, 16.1.0-16.1.3, and 17.1.0 (NVD, ASEC).

The vulnerability has been assigned a CVSS v3.1 Base Score of 7.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. It is categorized under CWE-770 (Allocation of Resources Without Limits or Throttling), indicating issues with resource management (NVD).

When exploited, this vulnerability can lead to a denial of service condition through traffic disruption. The primary impact is the restart of the Traffic Management Microkernel (TMM), which can affect the normal operation of the BIG-IP system (NVD).

F5 has released patched versions to address this vulnerability. Users should upgrade to BIG-IP AFM + IPS versions 15.1.9, 16.1.4, or 17.1.1 depending on their current version (ASEC).