The BIG-IP ASM system may consume excessive resources when processing certain types of HTTP responses from the origin web server. This vulnerability is only known to affect resource-constrained systems in which the security policy is configured with response-side features, such as Data Guard or response-side learning. (CVE-2019-6682)
Note: BIG-IP ASM systems experiencing this vulnerability log the following error message to the** /var/log/asm file**:01310003:0: ASM out of memory error: <event code>.
Impact
A remote attacker may be able to exhaust provisioned memory, interrupting traffic processing and causing a denial-of-service (DoS).