PT-2019-18195 · F5 · F5 Big-Ip
Published
2019-05-03
·
Updated
2023-02-10
·
CVE-2019-6613
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
F5 BIG-IP versions 13.0.0 through 13.1.1.4
F5 BIG-IP versions 12.1.0 through 12.1.4
F5 BIG-IP versions 11.6.1 through 11.6.3.4
F5 BIG-IP versions 11.5.2 through 11.5.8
Description
The issue allows sensitive configuration objects to be exposed over insecure transmission channels when using SNMP. This occurs when a passphrase is used with various profile types and is accessed using SNMPv2.
Recommendations
For F5 BIG-IP versions 13.0.0 through 13.1.1.4, consider disabling SNMPv2 until a patch is available.
For F5 BIG-IP versions 12.1.0 through 12.1.4, restrict access to sensitive configuration objects when using SNMP.
For F5 BIG-IP versions 11.6.1 through 11.6.3.4, avoid using passphrases with profile types that are accessed using SNMPv2.
For F5 BIG-IP versions 11.5.2 through 11.5.8, limit the use of SNMPv2 to minimize the risk of exposing sensitive configuration objects.
Fix
Cleartext Transmission of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
F5 Big-Ip