CVE-2024-41727: 
F5 BIG-IP Advanced Firewall Manager vulnerability analysis and mitigation

In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs) using Intel E810 SR-IOV NIC, undisclosed traffic can cause an increase in memory resource utilization. The vulnerability, identified as CVE-2024-41727, affects BIG-IP (all modules) versions 16.1.0 through 16.1.4 and 15.1.0 through 15.1.10. This vulnerability has been assigned a CVSS v4.0 score of 8.7 (HIGH) and a CVSS v3.1 score of 7.5 (HIGH) (CERT-EU, NVD).

The vulnerability allows a remote, unauthenticated attacker to degrade system performance by impacting the Traffic Management Microkernel (TMM) process. The vulnerability is classified under CWE-770 (Allocation of Resources Without Limits or Throttling) and CWE-400 (Uncontrolled Resource Consumption). The CVSS v4.0 vector string is CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L, indicating network accessibility, low attack complexity, and no required privileges or user interaction (CERT-EU, NVD).

If the TMM process is not restarted, the degradation can result in a denial-of-service (DoS) on the BIG-IP system. The vulnerability affects only the data plane, with no exposure of the control plane (CERT-EU).

It is recommended to apply updates to the affected assets as soon as possible. Software versions which have reached End of Technical Support (EoTS) are not evaluated (CERT-EU).