K19501795 : BIG-IP HTTP profile vulnerability CVE-2019-6631

2019-07-0100:00:00

my.f5.com

0.003 Low

EPSS

Percentile

71.8%

JSON

Security Advisory Description

iRules performing HTTP header manipulation may cause an interruption to service when processing traffic handled by a Virtual Server with an associated HTTP profile, in specific circumstances, when the requests do not strictly conform to RFCs. (CVE-2019-6631)

Impact

The BIG-IP system Traffic Management Microkernel (TMM) process may produce a core file and fail over to another system in the high availability (HA) group.

CPENameOperatorVersion
big-iq centralized managementeq5.0.0
big-iq centralized managementeq5.1.0
big-iq centralized managementeq5.2.0
big-iq centralized managementeq5.3.0
big-iq centralized managementeq5.4.0
big-iq centralized managementeq6.0.0
big-iq centralized managementeq6.0.1
big-iq centralized managementeq6.1.0
big-ip afmeq11.5.10
big-ip afmeq11.5.2

Name	Operator	Version
big-iq centralized management	eq	5.0.0
big-iq centralized management	eq	5.1.0
big-iq centralized management	eq	5.2.0
big-iq centralized management	eq	5.3.0
big-iq centralized management	eq	5.4.0
big-iq centralized management	eq	6.0.0
big-iq centralized management	eq	6.0.1
big-iq centralized management	eq	6.1.0
big-ip afm	eq	11.5.10
big-ip afm	eq	11.5.2

Rows per page:

1-10 of 3111

0.003 Low

EPSS

Percentile

71.8%

JSON

Related for F5:K19501795