CVE-2019-6640
N/A
N/A
Summary
On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.1-11.5.8, SNMP exposes sensitive configuration objects over insecure transmission channels. This issue is exposed when a passphrase is inserted into various profile types and accessed using SNMPv2.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| F5 | BIG-IP | BIG-IP 14.1.0-14.1.0.5 | affected |
| F5 | BIG-IP | 14.0.0-14.0.0.4 | affected |
| F5 | BIG-IP | 13.0.0-13.1.1.4 | affected |
| F5 | BIG-IP | 12.1.0-12.1.4 | affected |
| F5 | BIG-IP | 11.6.1-11.6.3.4 | affected |
| F5 | BIG-IP | 11.5.1-11.5.8 | affected |
Weaknesses
- Information Disclosure
ADP Enrichment
CVE Program Container
Additional References
- https://support.f5.com/csp/article/K40443301
- http://www.securityfocus.com/bid/109089
- https://support.f5.com/csp/article/K40443301?utm_source=f5support&%3Butm_medium=RSS
References
- https://support.f5.com/csp/article/K40443301
- http://www.securityfocus.com/bid/109089
- https://support.f5.com/csp/article/K40443301?utm_source=f5support&%3Butm_medium=RSS
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.