PT-2019-18237 · F5 · Big-Ip

Published

2019-09-25

Updated

2020-08-24

CVE-2019-6655

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 11.5.1 through 11.5.9 F5 BIG-IP versions 11.6.1 through 11.6.4 F5 BIG-IP versions 12.1.0 through 12.1.4.1 F5 BIG-IP versions 13.0.0 through 13.1.0.1

Description The issue may cause sensitive data leakage on BIG-IP platforms where certain modules are provisioned.

Recommendations For versions 11.5.1 through 11.5.9, restrict access to sensitive data until a fix is available. For versions 11.6.1 through 11.6.4, consider disabling provisioned modules to minimize risk. For versions 12.1.0 through 12.1.4.1, apply configuration changes to limit data exposure. For versions 13.0.0 through 13.1.0.1, update configuration to prevent sensitive data leakage.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-6655

Affected Products

Big-Ip

PT-2019-18237 · F5 · Big-Ip

CVE-2019-6655

Related Identifiers

Affected Products

References · 4