Performance Degradation in F5 BIG-IP Application Firewall due to Wildcard Virtual Server Configuration
CVE-2019-6672

7.5HIGH

Key Information:

Vendor: F5
Status: Big-ip Afm
Vendor: CVE Published:; 27 November 2019

What is CVE-2019-6672?

In specific versions of F5's BIG-IP Application Firewall, the configuration of bad-actor detection on a wildcard virtual server can lead to significant performance degradation. This impacts the efficiency of the system, particularly on hardware equipped with sPVA technology. Users of the affected versions should take precautions and consider adjusting their configurations to mitigate the performance issues.

Affected Version(s)

BIG-IP AFM 15.0.0-15.0.1

BIG-IP AFM 14.0.0-14.1.2

BIG-IP AFM 13.1.0-13.1.3.1

References

https://support.f5.com/csp/article/K14703097

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 27, 2019
Vulnerability Reserved
Jan 22, 2019