TCP Connection Issue in F5 BIG-IP DNS Cache
CVE-2019-6612

7.5HIGH

Key Information:

Vendor: F5
Status: Big-ip (ltm, Aam, Afm, Apm, Asm, Dns, Gtm, Link Controller, Pem)
Vendor: CVE Published:; 3 May 2019

What is CVE-2019-6612?

A vulnerability affecting certain versions of F5 BIG-IP can lead to an unexpected restart of the Traffic Management Microkernel (TMM) when DNS query TCP connections are terminated before a response is received from the DNS cache. This issue occurs in specific versions, impacting the stability and performance of network operations reliant on DNS. Proper patching and configuration adjustments are recommended to mitigate this risk.

Affected Version(s)

BIG-IP (LTM, AAM, AFM, APM, ASM, DNS, GTM, Link Controller, PEM) 14.0.0-14.1.0.1

BIG-IP (LTM, AAM, AFM, APM, ASM, DNS, GTM, Link Controller, PEM) 13.0.0-13.1.1.4

BIG-IP (LTM, AAM, AFM, APM, ASM, DNS, GTM, Link Controller, PEM) 12.1.0-12.1.4

References

https://support.f5.com/csp/article/K24401914

x_refsource_CONFIRM

http://www.securityfocus.com/bid/108295

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 3, 2019
Vulnerability Reserved
Jan 22, 2019