CVE-2019-6685
N/A
N/A
Summary
On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, users with access to edit iRules are able to create iRules which can lead to an elevation of privilege, configuration modification, and arbitrary system command execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| F5 | BIG-IP | 15.0.0-15.0.1.1 | affected |
| F5 | BIG-IP | 14.1.0-14.1.2.2 | affected |
| F5 | BIG-IP | 14.0.0-14.0.1 | affected |
| F5 | BIG-IP | 13.1.0-13.1.3.1 | affected |
| F5 | BIG-IP | 12.1.0-12.1.5 | affected |
| F5 | BIG-IP | 11.5.2-11.6.5.1 | affected |
Weaknesses
- Privilege escalation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.