Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-6603

In BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3, and 13.0.0-13.0.1, malformed TCP packets sent to a self IP address or a FastL4 virtual server may cause an interruption of service. The control plane is not exposed to this issue. This issue impacts the data plane virtual servers and self IPs.

Published

2019-03-28T21:29:00.633

Last Modified

2024-11-21T04:46:47.190

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

2.9

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application f5 big-ip_access_policy_manager ≤ 11.5.8 Yes
Application f5 big-ip_access_policy_manager ≤ 11.6.3 Yes
Application f5 big-ip_access_policy_manager ≤ 12.1.3 Yes
Application f5 big-ip_access_policy_manager ≤ 13.0.1 Yes
Application f5 big-ip_advanced_firewall_manager ≤ 11.5.8 Yes
Application f5 big-ip_advanced_firewall_manager ≤ 11.6.3 Yes
Application f5 big-ip_advanced_firewall_manager ≤ 12.1.3 Yes
Application f5 big-ip_advanced_firewall_manager ≤ 13.0.1 Yes
Application f5 big-ip_application_acceleration_manager ≤ 11.5.8 Yes
Application f5 big-ip_application_acceleration_manager ≤ 11.6.3 Yes
Application f5 big-ip_application_acceleration_manager ≤ 12.1.3 Yes
Application f5 big-ip_application_acceleration_manager ≤ 13.0.1 Yes
Application f5 big-ip_edge_gateway ≤ 11.5.8 Yes
Application f5 big-ip_edge_gateway ≤ 11.6.3 Yes
Application f5 big-ip_edge_gateway ≤ 12.1.3 Yes
Application f5 big-ip_edge_gateway ≤ 13.0.1 Yes
Application f5 big-ip_fraud_protection_service ≤ 11.5.8 Yes
Application f5 big-ip_fraud_protection_service ≤ 11.6.3 Yes
Application f5 big-ip_fraud_protection_service ≤ 12.1.3 Yes
Application f5 big-ip_fraud_protection_service ≤ 13.0.1 Yes
Application f5 big-ip_global_traffic_manager ≤ 11.5.8 Yes
Application f5 big-ip_global_traffic_manager ≤ 11.6.3 Yes
Application f5 big-ip_global_traffic_manager ≤ 12.1.3 Yes
Application f5 big-ip_global_traffic_manager ≤ 13.0.1 Yes
Application f5 big-ip_link_controller ≤ 11.5.8 Yes
Application f5 big-ip_link_controller ≤ 11.6.3 Yes
Application f5 big-ip_link_controller ≤ 12.1.3 Yes
Application f5 big-ip_link_controller ≤ 13.0.1 Yes
Application f5 big-ip_local_traffic_manager ≤ 11.5.8 Yes
Application f5 big-ip_local_traffic_manager ≤ 11.6.3 Yes
Application f5 big-ip_local_traffic_manager ≤ 12.1.3 Yes
Application f5 big-ip_local_traffic_manager ≤ 13.0.1 Yes
Application f5 big-ip_policy_enforcement_manager ≤ 11.5.8 Yes
Application f5 big-ip_policy_enforcement_manager ≤ 11.6.3 Yes
Application f5 big-ip_policy_enforcement_manager ≤ 12.1.3 Yes
Application f5 big-ip_policy_enforcement_manager ≤ 13.0.1 Yes
Hardware f5 big-ip_protocol_security_manager ≤ 11.5.8 Yes
Hardware f5 big-ip_protocol_security_manager ≤ 11.6.3 Yes
Hardware f5 big-ip_protocol_security_manager ≤ 12.1.3 Yes
Hardware f5 big-ip_protocol_security_manager ≤ 13.0.1 Yes
Application f5 big-ip_webaccelerator ≤ 11.5.8 Yes
Application f5 big-ip_webaccelerator ≤ 11.6.3 Yes
Application f5 big-ip_webaccelerator ≤ 12.1.3 Yes
Application f5 big-ip_webaccelerator ≤ 13.0.1 Yes
Application f5 big-ip_analytics ≤ 11.5.8 Yes
Application f5 big-ip_analytics ≤ 11.6.3 Yes
Application f5 big-ip_analytics ≤ 12.1.3 Yes
Application f5 big-ip_analytics ≤ 13.0.1 Yes
Application f5 big-ip_application_security_manager ≤ 11.5.8 Yes
Application f5 big-ip_application_security_manager ≤ 11.6.3 Yes
Application f5 big-ip_application_security_manager ≤ 12.1.3 Yes
Application f5 big-ip_application_security_manager ≤ 13.0.1 Yes
References