SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionUnder certain conditions, on F5 BIG-IP ASM 13.0.0-184.108.40.206, 12.1.0-220.127.116.11, 11.6.0-18.104.22.168, 11.5.1-11.5.6, or 11.2.1, when processing CSRF protections, the BIG-IP ASM bd process may restart and produce a core file. (CVE-2018-5539)
The affected BIG-IP ASM system fails to process traffic while the bd process restarts.
BIG-IQ, F5 iWorkflow, Enterprise Manager, ARX, and Traffix SDC
There is no impact; these F5 products are not affected by this vulnerability.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K75432956.