CVE-2019-6678

Published Dec 23, 2019
Last updated 4 years ago
CVSS medium 5.3
Overview

Description: On BIG-IP versions 15.0.0-15.0.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, the TMM process may restart when the packet filter feature is enabled.
Source: f5sirt@f5.com
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 5.3
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Severity: MEDIUM
CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1AE785C8-06CA-4B15-A72D-A7EB0F0895D7",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58C8E163-2A45-4C64-A7C2-5686C1EB3C78",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "751CDF0F-4490-48D7-9FA1-C93963D61783",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C24A8114-31AE-47C2-9FEE-52B69585D56A",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1212E1D-1A8F-4C6C-9472-22CE48F21B61",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E17D443D-9E5D-4F41-A539-6D7842B21E25",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10B3AA0A-A1E3-405F-AA45-E9EFC76E0C4D",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7FFA9687-4655-4C45-ACE2-A957457BBD8B",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E606B713-528D-4C6D-98C4-E9A93DB7A8E8",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0FA8C03D-3661-446D-B502-BEB52B7B6305",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FEA3E542-3A3E-43A1-8F7C-1539D1E23D53",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28054725-6775-4AEE-B686-FB690894D1C6",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4D99030-AEA2-4DDF-AD7D-0ED66913D6FA",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1503B2F8-3549-4E52-87E9-6F0FD91F1428",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3982981A-1CB7-4714-987D-DD8447C376C4",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3922DE9-3D92-484E-9BA2-1C278A6EDECE",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19699BA9-2324-40C5-81B9-0EA6A45109AA",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8BA9BE0-1646-41EF-BCE2-7BD4021196C5",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D7B3A867-DAD2-415D-A720-FA78CF59CE5B",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A58BD3F-F6D7-4EB3-B108-FEAA39262B75",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21987539-682A-4F8F-9FE7-526A054705FF",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7B34FC0-168E-4CA8-B1F4-BDC0D2213280",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE821B81-45CF-4A7E-AB28-FB8203BD3801",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCB0A0A1-244E-432F-8144-9770CC4AB696",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34F29398-32A5-48F6-B144-B184BFFB1034",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "678B7FC3-6796-4159-BF2B-8FAD49E0F566",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2E3630A-B342-428C-A168-3D9D81FCE472",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC4E7530-C750-4AE5-A98D-12F3E3819869",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FEAA997-2F7E-4E93-AEAA-33215A6C09A9",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0E47FF6-A851-4588-9F39-B292D4147AE6",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "216DAC69-3D5A-4285-85A8-31D724F9629C",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AEEB875C-E0EC-467B-9296-861F042AED67",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67AA4DB9-A5B6-4AF2-B6FC-3C21913264BD",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D960933D-9476-4473-A3FB-0032C051BE50",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42E5D1DB-8DB4-48F8-862A-1FA3F01378BE",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFFE4B6E-DB23-45FB-9075-FC6B52FC18FC",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2596EE8-47D2-41E1-BD32-955D80FD697B",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44D33B41-F19D-4B46-9F9E-FC03051EBB0C",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0A01C44-EBC3-4CCF-A405-A829DF26013A",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6300DC5-7D1F-4098-AD61-2826252A1C63",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3F3F4FD-8BB9-468D-B50F-B25B17AF0F3A",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63529AEA-8B74-4CA1-BADF-14514D243DC5",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86B9622A-B52E-4447-A4D4-27178DEEA141",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5485F6ED-F324-4124-9116-79E70909C5F7",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "272A20C4-70D7-43AB-8B62-132466AB1E35",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE65180C-47C8-41CF-B6C7-181259605B2C",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58AC3067-23DE-4C2E-A0EF-FA471B6D23A3",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D8E67E0B-E542-4863-99D8-B3836ECDC04D",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F439E03A-FCE0-4865-986B-E21D52ED4470",
            "versionEndExcluding": "13.1.3.2",
            "versionStartIncluding": "13.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54E703A5-F9F1-4DDA-8B70-D3C6F51038B6",
            "versionEndExcluding": "14.0.1.1",
            "versionStartIncluding": "14.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07505FF4-D13E-4D86-A166-9B84791637FB",
            "versionEndExcluding": "14.1.2.3",
            "versionStartIncluding": "14.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0F6FDF3-A70E-4F37-975F-85735776B4B8",
            "versionEndExcluding": "15.0.1.1",
            "versionStartIncluding": "15.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
