CVE-2019-6672

7.5HIGH

Key Information:

Vendor: F5
Status: Big-ip Afm
Vendor: CVE Published:; 27 November 2019

Summary

On BIG-IP AFM 15.0.0-15.0.1, 14.0.0-14.1.2, and 13.1.0-13.1.3.1, when bad-actor detection is configured on a wildcard virtual server on platforms with hardware-based sPVA, the performance of the BIG-IP AFM system is degraded.

Affected Version(s)

BIG-IP AFM 15.0.0-15.0.1

BIG-IP AFM 14.0.0-14.1.2

BIG-IP AFM 13.1.0-13.1.3.1

References

https://support.f5.com/csp/article/K14703097

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 27, 2019
Vulnerability Reserved
Jan 22, 2019