Lucene search
K

5 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.40 views

K26462555: BIG-IP ASM and BIG-IQ/Enterprise Manager/F5 iWorkflow device authentication and trust vulnerability CVE-2019-6665

Security Advisory Description An attacker with access to the device communication between the BIG-IP ASM Central Policy Builder and the BIG-IQ/Enterprise Manager/F5 iWorkflow will be able to set up the proxy the same way and intercept the traffic. CVE-2019-6665 Impact BIG-IP ASM / BIG-IQ /...

9.4CVSS8.7AI score0.0113EPSS
Exploits0
NVD
NVD
added 2019/11/27 10:15 p.m.28 views

CVE-2019-6665

On BIG-IP ASM 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, BIG-IQ 6.0.0 and 5.2.0-5.4.0, iWorkflow 2.3.0, and Enterprise Manager 3.1.1, an attacker with access to the device communication between the BIG-IP ASM Central Policy Builder and the BIG-IQ/Enterprise Manager/F5...

9.4CVSS9.1AI score0.0113EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/27 9:57 p.m.27 views

CVE-2019-6665

On BIG-IP ASM 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, BIG-IQ 6.0.0 and 5.2.0-5.4.0, iWorkflow 2.3.0, and Enterprise Manager 3.1.1, an attacker with access to the device communication between the BIG-IP ASM Central Policy Builder and the BIG-IQ/Enterprise Manager/F5...

9.2AI score0.0113EPSS
Exploits0References1
CVE
CVE
added 2019/11/27 9:57 p.m.71 views

CVE-2019-6665

CVE-2019-6665 affects BIG-IP ASM (15.0.0–15.0.1, 14.1.0–14.1.2, 14.0.0–14.0.1, 13.1.0–13.1.3.1), BIG-IQ 5.2.0–5.4.0 and 6.x, Enterprise Manager 3.1.1, and F5 iWorkflow 2.3.0. An attacker able to access the device communications between the BIG-IP ASM Central Policy Builder and BIG-IQ/Enterprise M...

9.4CVSS9.1AI score0.0113EPSS
Exploits0References1Affected Software4
Symantec
Symantec
added 2019/11/27 12:0 a.m.47 views

Multiple F5 Products CVE-2019-6665 Man in the Middle Security Bypass Vulnerability

Description Multiple F5 Products are prone to a security-bypass vulnerability. Successfully exploiting this issue allows attackers to perform man-in-the-middle attacks or impersonate trusted servers, which will aid in further attacks. The following products are vulnerable: BIG-IP ASM 15.0.0 throu...

1AI score0.0113EPSS
Exploits0References1Affected Software4
Rows per page
Query Builder