A vulnerability was found in F5 BIG-IP Advanced WAF and BIG-IP ASM up to 16.1.3. It has been classified as critical. Affected is an unknown function of the component Traffic Management Microkernel. The manipulation leads to return of pointer value outside of expected range.
This vulnerability is traded as CVE-2024-21849. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.