CVE-2019-6604 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2019-6604

Analyzed

More Info Official Page

Source-f5sirt@f5.com

Published At-28 Mar, 2019 | 21:29

Updated At-24 Aug, 2020 | 17:37

On BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3.6, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under certain conditions, hardware systems with a High-Speed Bridge and using non-default Layer 2 forwarding configurations may experience a lockup of the High-Speed Bridge.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	6.8	MEDIUM	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P

CPE Matches

>>big-ip_access_policy_manager>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

>>big-ip_access_policy_manager>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

>>big-ip_access_policy_manager>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

>>big-ip_access_policy_manager>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

>>big-ip_access_policy_manager>>14.0.0

cpe:2.3:a:f5:big-ip_access_policy_manager:14.0.0:*:*:*:*:*:*:*

>>big-ip_advanced_firewall_manager>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*

>>big-ip_advanced_firewall_manager>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*

>>big-ip_advanced_firewall_manager>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*

>>big-ip_advanced_firewall_manager>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*

>>big-ip_advanced_firewall_manager>>14.0.0

cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.0.0:*:*:*:*:*:*:*

>>big-ip_application_acceleration_manager>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*

>>big-ip_application_acceleration_manager>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*

>>big-ip_application_acceleration_manager>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*

>>big-ip_application_acceleration_manager>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*

>>big-ip_application_acceleration_manager>>14.0.0

cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.0.0:*:*:*:*:*:*:*

>>big-ip_edge_gateway>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*

>>big-ip_edge_gateway>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*

>>big-ip_edge_gateway>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*

>>big-ip_edge_gateway>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*

>>big-ip_edge_gateway>>14.0.0

cpe:2.3:a:f5:big-ip_edge_gateway:14.0.0:*:*:*:*:*:*:*

>>big-ip_fraud_protection_service>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*

>>big-ip_fraud_protection_service>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*

>>big-ip_fraud_protection_service>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*

>>big-ip_fraud_protection_service>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*

>>big-ip_fraud_protection_service>>14.0.0

cpe:2.3:a:f5:big-ip_fraud_protection_service:14.0.0:*:*:*:*:*:*:*

>>big-ip_global_traffic_manager>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*

>>big-ip_global_traffic_manager>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*

>>big-ip_global_traffic_manager>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*

>>big-ip_global_traffic_manager>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*

>>big-ip_global_traffic_manager>>14.0.0

cpe:2.3:a:f5:big-ip_global_traffic_manager:14.0.0:*:*:*:*:*:*:*

>>big-ip_link_controller>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*

>>big-ip_link_controller>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*

>>big-ip_link_controller>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*

>>big-ip_link_controller>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*

>>big-ip_link_controller>>14.0.0

cpe:2.3:a:f5:big-ip_link_controller:14.0.0:*:*:*:*:*:*:*

>>big-ip_local_traffic_manager>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

>>big-ip_local_traffic_manager>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

>>big-ip_local_traffic_manager>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

>>big-ip_local_traffic_manager>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

>>big-ip_local_traffic_manager>>14.0.0

cpe:2.3:a:f5:big-ip_local_traffic_manager:14.0.0:*:*:*:*:*:*:*

>>big-ip_policy_enforcement_manager>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*

>>big-ip_policy_enforcement_manager>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*

>>big-ip_policy_enforcement_manager>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*

>>big-ip_policy_enforcement_manager>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*

>>big-ip_policy_enforcement_manager>>14.0.0

cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.0.0:*:*:*:*:*:*:*

>>big-ip_protocol_security_module>>Versions from 11.2.1(inclusive) to 11.5.8(inclusive)

cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*

>>big-ip_protocol_security_manager>>Versions from 11.6.0(inclusive) to 11.6.3(inclusive)

cpe:2.3:h:f5:big-ip_protocol_security_manager:*:*:*:*:*:*:*:*

>>big-ip_protocol_security_manager>>Versions from 12.1.0(inclusive) to 12.1.3(inclusive)

cpe:2.3:h:f5:big-ip_protocol_security_manager:*:*:*:*:*:*:*:*

>>big-ip_protocol_security_manager>>Versions from 13.0.0(inclusive) to 13.1.1(inclusive)

cpe:2.3:h:f5:big-ip_protocol_security_manager:*:*:*:*:*:*:*:*

>>big-ip_protocol_security_manager>>14.0.0

cpe:2.3:h:f5:big-ip_protocol_security_manager:14.0.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-noinfo	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
https://support.f5.com/csp/article/K26455071	f5sirt@f5.com	Vendor Advisory