Code injection

2019-02-2615:29:00

PRIOn knowledge base

www.prio-n.com

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.0%

JSON

On BIG-IP 11.5.1-11.5.4, 11.6.1, and 12.1.0, a virtual server configured with a Client SSL profile may be vulnerable to a chosen ciphertext attack against CBC ciphers. When exploited, this may result in plaintext recovery of encrypted messages through a man-in-the-middle (MITM) attack, despite the attacker not having gained access to the server’s private key itself. (CVE-2019-6593 also known as Zombie POODLE and GOLDENDOODLE.)

CPENameOperatorVersion
big-ip_access_policy_managereq12.1.0
big-ip_access_policy_managereq11.6.1
big-ip_access_policy_managerge11.5.1
big-ip_access_policy_managerle11.5.4
big-ip_access_policy_managereq12.1.0
big-ip_access_policy_managereq11.6.1
big-ip_access_policy_managerge11.5.1
big-ip_access_policy_managerle11.5.4
big-ip_advanced_firewall_managereq12.1.0
big-ip_advanced_firewall_managereq11.6.1

Name	Operator	Version
big-ip_access_policy_manager	eq	12.1.0
big-ip_access_policy_manager	eq	11.6.1
big-ip_access_policy_manager	ge	11.5.1
big-ip_access_policy_manager	le	11.5.4
big-ip_access_policy_manager	eq	12.1.0
big-ip_access_policy_manager	eq	11.6.1
big-ip_access_policy_manager	ge	11.5.1
big-ip_access_policy_manager	le	11.5.4
big-ip_advanced_firewall_manager	eq	12.1.0
big-ip_advanced_firewall_manager	eq	11.6.1

Rows per page:

1-10 of 521

References

support.f5.com/csp/article/K10065173