CVE-2017-6141 F5 BIG-IP ASM TMM SSL/TLS Profile Vulnerability (K21154730)

Certain values in a TLS abbreviated handshake when using a client SSL profile with the Session Ticket option enabled may cause disruption of service to the Traffic Management Microkernel (TMM). The Session Ticket option is disabled by default. Affected Versions:
BIG-IP ASM 12.1.0 - 12.1.2 QID Detection Logic:
This authenticated QID checks for the vulnerable versions of F5 BIG-IP devices.

The Traffic Management Microkernel (TMM) may restart and temporarily fail to process traffic.

Customers are advised to refer to K21154730 for updates pertaining to this vulnerability.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

K21154730