Last Modified: Jul 08, 2026
Affected Product(s):
BIG-IP APM
Known Affected Versions:
17.5.1.6
Opened: Jun 29, 2026 Severity: 2-Critical
When JWTs with an encoded length greater than 2MB are processed by TMM for OAuth, it causes TMM to crash
The TMM crashes, causing the BIG-IP to become unavailable
JWT configured with large claims or scope - increasing the overall payload size
Reduce JWT payload length by modifying the claims or scopes
None