Technical Breakdown: F5 Ticketbleed Remediation

Written by Tim Cullen, CISSP, F5-CTS
Senior Security Architect at ADAPTURE

What is F5 Ticketbleed?

In late October, a vulnerability was discovered that affects all versions of F5 TMOS from versions 11.4 to 12.1. This was originally discovered by Filippo Valsorda of the Cloudflare Crypto Team. (You can read about how the vulnerability was detected by reading Filippo’s blog here). The vulnerability was given a CVE number of CVE-2016-9244 and labeled as an F5 TLS Vulnerability.