PT-2019-18187 · F5 · F5 Big-Ip

Published

2019-03-28

Updated

2020-08-24

CVE-2019-6605

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 11.5.1 through 11.5.8 F5 BIG-IP versions 11.6.1 through 11.6.3 F5 BIG-IP versions 12.0.x

Description The issue is related to an undisclosed sequence of packets received by an SSL virtual server and processed by an associated Client SSL or Server SSL profile, which may cause a denial of service.

Recommendations For F5 BIG-IP versions 11.5.1 through 11.5.8, update to a fixed version to resolve the issue. For F5 BIG-IP versions 11.6.1 through 11.6.3, update to a fixed version to resolve the issue. For F5 BIG-IP versions 12.0.x, update to a fixed version to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-6605

Affected Products

F5 Big-Ip

PT-2019-18187 · F5 · F5 Big-Ip

CVE-2019-6605

Related Identifiers

Affected Products

References · 4