CVE-2019-6603

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 11.5.1 through 11.5.8 F5 BIG-IP versions 11.6.1 through 11.6.3 F5 BIG-IP versions 12.1.0 through 12.1.3 F5 BIG-IP versions 13.0.0 through 13.0.1

Description The issue is caused by malformed TCP packets sent to a self IP address or a FastL4 virtual server, which may result in an interruption of service. This issue affects the data plane virtual servers and self IPs, but the control plane is not exposed.

Recommendations For versions 11.5.1 through 11.5.8, update to a version outside of this range to resolve the issue. For versions 11.6.1 through 11.6.3, update to a version outside of this range to resolve the issue. For versions 12.1.0 through 12.1.3, update to a version outside of this range to resolve the issue. For versions 13.0.0 through 13.0.1, update to a version outside of this range to resolve the issue.