PT-2019-18192 · F5 · Big-Ip

Published

2019-04-11

Updated

2020-08-24

CVE-2019-6610

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:C

Name of the Vulnerable Software and Affected Versions BIG-IP versions 11.5.1 through 11.5.8 BIG-IP versions 11.6.0 through 11.6.3.4 BIG-IP versions 12.1.0 through 12.1.4 BIG-IP versions 13.0.0 through 13.1.1.1 BIG-IP versions 14.0.0 through 14.0.0.4

Description The system is vulnerable to a denial of service attack when performing URL classification.

Recommendations For BIG-IP versions 11.5.1 through 11.5.8, update to a version outside of this range to resolve the issue. For BIG-IP versions 11.6.0 through 11.6.3.4, update to a version outside of this range to resolve the issue. For BIG-IP versions 12.1.0 through 12.1.4, update to a version outside of this range to resolve the issue. For BIG-IP versions 13.0.0 through 13.1.1.1, update to a version outside of this range to resolve the issue. For BIG-IP versions 14.0.0 through 14.0.0.4, update to a version outside of this range to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-6610

Affected Products

Big-Ip

PT-2019-18192 · F5 · Big-Ip

CVE-2019-6610

Related Identifiers

Affected Products

References · 3