CVE-2019-6602

Summary

In BIG-IP 11.5.1-11.5.8 and 11.6.1-11.6.3, the Configuration Utility login page may not follow best security practices when handling a malicious request.

Affected Software

VendorProductVersion RangeStatus
BIG-IPBIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator)11.5.1-11.5.8affected
BIG-IPBIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator)11.6.1-11.6.3.4affected

Weaknesses

  • Information disclosure

ADP Enrichment

CVE Program Container

Additional References

References