CVE-2019-6682

Name of the Vulnerable Software and Affected Versions F5 BIG-IP ASM versions 11.5.2 through 11.6.5.1 F5 BIG-IP ASM versions 12.1.0 through 12.1.5 F5 BIG-IP ASM versions 13.1.0 through 13.1.3.1 F5 BIG-IP ASM versions 14.0.0 through 14.1.2.2 F5 BIG-IP ASM versions 15.0.0 through 15.0.1.1

Description The BIG-IP ASM system may consume excessive resources when processing certain types of HTTP responses from the origin web server. This issue is known to affect resource-constrained systems in which the security policy is configured with response-side features, such as Data Guard or response-side learning.

Recommendations For versions 11.5.2 through 11.6.5.1, consider disabling response-side features until a patch is available. For versions 12.1.0 through 12.1.5, consider disabling response-side features until a patch is available. For versions 13.1.0 through 13.1.3.1, consider disabling response-side features until a patch is available. For versions 14.0.0 through 14.1.2.2, consider disabling response-side features until a patch is available. For versions 15.0.0 through 15.0.1.1, consider disabling response-side features until a patch is available.