CVE-2019-6603

Published Mar 28, 2019
Last updated 4 years ago
CVSS high 7.5
Overview

Description: In BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3, and 13.0.0-13.0.1, malformed TCP packets sent to a self IP address or a FastL4 virtual server may cause an interruption of service. The control plane is not exposed to this issue. This issue impacts the data plane virtual servers and self IPs.
Source: f5sirt@f5.com
NVD status: Analyzed
Risk scores

CVSS 3.0

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5917BC9C-20D5-46B1-8CAE-FF13944A6826",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CC4967B-F2FC-4A94-8A6D-469D5B9F98AA",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6BB42D3A-71EE-4367-9F65-86404D74E59D",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D851DC0C-616D-4274-9CAF-5CBDB0E6CD14",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CBAF023-ECDC-46AA-877C-FEC138154BF9",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2749969B-5CDD-42A4-9DE3-DE111D41969F",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5011C2D-FBB5-4117-BB97-11DE70117345",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D22FE2C-CC72-42C8-B68B-CEBE002D0787",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D8B08497-08EC-4841-A3CE-CD8ABFEF5776",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14E85172-80FB-4A48-A02F-B2BCEEEFD764",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5D00EED-F95D-4458-BDC4-3390DE85348B",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "988EB5E2-6099-41A5-BE4F-CA3999C335AE",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7325E534-6B65-49B8-988A-DE697261FF8E",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "13414479-696D-41FB-919F-783741919610",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A11E433-943D-4D92-B45E-3FA268094278",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA780928-B3CA-42A5-B39B-B07F64733B52",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC16DB86-DCA7-4E8F-A14E-19CD56860700",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C1A6391D-E411-472A-A714-88D435789095",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4C3D6F5-D94D-46A3-991C-A11275B59F8E",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCA2B639-DDB9-49B8-B792-5C8D0454FD03",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3ED5BCF6-E0BB-4EC9-B5E2-C4AF013BB074",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "288029B5-863C-492C-83A6-C206A85201ED",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57CCB85A-6F90-4DB7-B0F8-AE5250E1DCFE",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A2564C2-BD67-4DDE-A122-74F7E6C22318",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18635B65-806D-4F10-A853-87F870E981F7",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73EFB5D4-2BB0-402C-8CE2-5F33A68C42AD",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60189636-02D6-44CA-BE2A-7777E3C409CD",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5ACAA88B-9AFB-4D06-91CB-F73070FFFFD9",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBAB68BD-C800-46A8-8FC7-87AAE84EE4C4",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB73A745-E16B-4084-8CBE-FBBF8F52E72E",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2CD4DFE3-9071-4808-AE24-2CCA5DB5BA80",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "733198D0-FF68-410D-86B9-21CE3C353916",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "858B5DF1-A47F-467D-958D-77F5041BDB0A",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4016BD06-2BC7-4CBD-806F-2ED718E2418C",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AD75094-3248-4D37-969E-75272F6F31D6",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03A2FE7F-4668-47E5-906D-F89AEBC30545",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:f5:big-ip_protocol_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60A7F3D6-8E27-4226-A30E-FE285D269FF4",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:h:f5:big-ip_protocol_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE827D8E-CD6E-430B-AF9F-C0BCF7373E0E",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:h:f5:big-ip_protocol_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1160D8C7-32E7-4837-AF7B-6F056255B5A2",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:h:f5:big-ip_protocol_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2BD4ACCC-DC43-4AF4-AB71-86A0EBCE194F",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E52F2B50-314C-4F02-AF3B-EAF8109A5B04",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD85C59D-43E8-4091-B0F6-5ACC40CC7257",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1FE1518D-8F83-47E9-B183-A998FA8B7CE2",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10B05525-4E48-4627-AF46-2A07D7DBFF32",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AEF3D694-93F5-4929-A9C0-BC2D7E9C3252",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5455A25-7557-4801-BC0F-8E78149A883C",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79344F94-2CB8-4F08-9373-61614A38476C",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABBA0EE3-7A16-49CB-BE53-4E371AA4111F",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E1A42AA-059E-48D2-8564-6886CB48C41A",
            "versionEndIncluding": "11.5.8",
            "versionStartIncluding": "11.5.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "961AFB08-734F-4C41-BE91-B4649B23E45F",
            "versionEndIncluding": "11.6.3",
            "versionStartIncluding": "11.6.1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "397AC4A5-B67C-483B-84F7-8CB294BB460C",
            "versionEndIncluding": "12.1.3",
            "versionStartIncluding": "12.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C56B7CD3-4224-4CF8-8FAB-9F44DAC1BE3F",
            "versionEndIncluding": "13.0.1",
            "versionStartIncluding": "13.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References
