Lucene search
F5CVELIST:CVE-2019-6685HistoryDec 23, 2019 - 5:30 p.m.
CVE-2019-6685
2019-12-2317:30:59
f5
www.cve.org
6
EPSS
0
Percentile
12.6%
On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, users with access to edit iRules are able to create iRules which can lead to an elevation of privilege, configuration modification, and arbitrary system command execution.
CNA Affected
[
{
"product": "BIG-IP",
"vendor": "F5",
"versions": [
{
"status": "affected",
"version": "15.0.0-15.0.1.1"
},
{
"status": "affected",
"version": "14.1.0-14.1.2.2"
},
{
"status": "affected",
"version": "14.0.0-14.0.1"
},
{
"status": "affected",
"version": "13.1.0-13.1.3.1"
},
{
"status": "affected",
"version": "12.1.0-12.1.5"
},
{
"status": "affected",
"version": "11.5.2-11.6.5.1"
}
]
}
]References
Related
f5
f5
K30215839 : F5 iRules vulnerability CVE-2019-6685
2019-12-20 00:00:00
nessus
nessus
F5 Networks BIG-IP : F5 iRules vulnerability (K30215839)
2019-12-31 00:00:00
cve
cve
CVE-2019-6685
2019-12-23 18:15:11
prion
prion
Privilege escalation
2019-12-23 18:15:00
nvd
nvd
CVE-2019-6685
2019-12-23 18:15:11