Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2019-6594
Analyzed
More InfoOfficial Page
Source-f5sirt@f5.com
View Known Exploited Vulnerability (KEV) details
Published At-26 Feb, 2019 | 15:29
Updated At-24 Aug, 2020 | 17:37

On BIG-IP 11.5.1-11.6.3.2, 12.1.3.4-12.1.3.7, 13.0.0 HF1-13.1.1.1, and 14.0.0-14.0.0.2, Multi-Path TCP (MPTCP) does not protect against multiple zero length DATA_FINs in the reassembly queue, which can lead to an infinite loop in some circumstances.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.05.9MEDIUM
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
CPE Matches
F5, Inc.
f5
>>big-ip_access_policy_manager>>Versions from 11.5.3(inclusive) to 11.6.3.2(inclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>Versions from 12.1.3.4(inclusive) to 12.1.3.7(inclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>Versions from 13.0.1(inclusive) to 13.1.1.1(inclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>Versions from 14.0.0(inclusive) to 14.0.0.2(inclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>13.0.0
cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:hf1:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>13.0.0
cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:hf2:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>13.0.0
cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:hf3:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_local_traffic_manager>>Versions from 11.5.1(inclusive) to 11.6.3.2(inclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_local_traffic_manager>>Versions from 12.1.3.4(inclusive) to 12.1.3.7(inclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_local_traffic_manager>>Versions from 13.0.1(inclusive) to 13.1.1.1(inclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_local_traffic_manager>>Versions from 14.0.0(inclusive) to 14.0.0.2(inclusive)
cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_local_traffic_manager>>13.0.0
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.0.0:hf1:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_local_traffic_manager>>13.0.0
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.0.0:hf2:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_local_traffic_manager>>13.0.0
cpe:2.3:a:f5:big-ip_local_traffic_manager:13.0.0:hf3:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_advanced_firewall_manager>>Versions from 11.5.1(inclusive) to 11.6.3.2(inclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_advanced_firewall_manager>>Versions from 12.1.3.4(inclusive) to 12.1.3.7(inclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_advanced_firewall_manager>>Versions from 13.0.1(inclusive) to 13.1.1.1(inclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_advanced_firewall_manager>>Versions from 14.0.0(inclusive) to 14.0.0.2(inclusive)
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_advanced_firewall_manager>>13.0.0
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0:hf1:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_advanced_firewall_manager>>13.0.0
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0:hf2:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_advanced_firewall_manager>>13.0.0
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0:hf3:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_analytics>>Versions from 11.5.1(inclusive) to 11.6.3.2(inclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_analytics>>Versions from 12.1.3.4(inclusive) to 12.1.3.7(inclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_analytics>>Versions from 13.0.1(inclusive) to 13.1.1.1(inclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_analytics>>Versions from 14.0.0(inclusive) to 14.0.0.2(inclusive)
cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_analytics>>13.0.0
cpe:2.3:a:f5:big-ip_analytics:13.0.0:hf1:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_analytics>>13.0.0
cpe:2.3:a:f5:big-ip_analytics:13.0.0:hf2:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_analytics>>13.0.0
cpe:2.3:a:f5:big-ip_analytics:13.0.0:hf3:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>Versions from 11.5.1(inclusive) to 11.6.3.2(inclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>Versions from 12.1.3.4(inclusive) to 12.1.3.7(inclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>Versions from 13.0.0.1(inclusive) to 13.1.1.1(inclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>Versions from 14.0.0(inclusive) to 14.0.0.2(inclusive)
cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>13.0.0
cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:hf1:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>13.0.0
cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:hf2:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_access_policy_manager>>13.0.0
cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:hf3:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_application_security_manager>>Versions from 11.5.1(inclusive) to 11.6.3.2(inclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_application_security_manager>>Versions from 12.1.3.4(inclusive) to 12.1.3.7(inclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_application_security_manager>>Versions from 13.0.1(inclusive) to 13.1.1.1(inclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_application_security_manager>>Versions from 14.0.0(inclusive) to 14.0.0.2(inclusive)
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_application_security_manager>>13.0.0
cpe:2.3:a:f5:big-ip_application_security_manager:13.0.0:hf1:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_application_security_manager>>13.0.0
cpe:2.3:a:f5:big-ip_application_security_manager:13.0.0:hf2:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_application_security_manager>>13.0.0
cpe:2.3:a:f5:big-ip_application_security_manager:13.0.0:hf3:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_domain_name_system>>Versions from 11.5.1(inclusive) to 11.6.3.2(inclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_domain_name_system>>Versions from 12.1.3.4(inclusive) to 12.1.3.7(inclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_domain_name_system>>Versions from 13.0.1(inclusive) to 13.1.1.1(inclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_domain_name_system>>Versions from 14.0.0(inclusive) to 14.0.0.2(inclusive)
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_domain_name_system>>13.0.0
cpe:2.3:a:f5:big-ip_domain_name_system:13.0.0:hf1:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_domain_name_system>>13.0.0
cpe:2.3:a:f5:big-ip_domain_name_system:13.0.0:hf2:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_domain_name_system>>13.0.0
cpe:2.3:a:f5:big-ip_domain_name_system:13.0.0:hf3:*:*:*:*:*:*
F5, Inc.
f5
>>big-ip_edge_gateway>>Versions from 11.5.1(inclusive) to 11.6.3.2(inclusive)
cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-835Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://support.f5.com/csp/article/K91026261f5sirt@f5.com
Vendor Advisory
Change History
0Changes found
Details not found