CVE-2019-6682
N/A
N/A
Summary
On versions 15.0.0-15.0.1.1, 14.0.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, the BIG-IP ASM system may consume excessive resources when processing certain types of HTTP responses from the origin web server. This vulnerability is only known to affect resource-constrained systems in which the security policy is configured with response-side features, such as Data Guard or response-side learning.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| F5 | BIG-IP ASM | 15.0.0-15.0.1.1 | affected |
| F5 | BIG-IP ASM | 14.0.0-14.1.2.2 | affected |
| F5 | BIG-IP ASM | 13.1.0-13.1.3.1 | affected |
| F5 | BIG-IP ASM | 12.1.0-12.1.5 | affected |
| F5 | BIG-IP ASM | 11.5.2-11.6.5.1 | affected |
Weaknesses
- DoS
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.