Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-6675 (GCVE-0-2019-6675)
Vulnerability from cvelistv5 – Published: 2019-11-26 14:49 – Updated: 2024-08-04 20:31
VLAI?
EPSS
Summary
BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso
Severity ?
No CVSS data available.
CWE
- Authentication Bypass
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | BIG-IP |
Affected:
Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T20:31:03.620Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp%3Butm_medium=RSS"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.f5.com/csp/article/K55655944"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "BIG-IP",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Authentication Bypass",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-26T14:51:24.000Z",
"orgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
"shortName": "f5"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp%3Butm_medium=RSS"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.f5.com/csp/article/K55655944"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "f5sirt@f5.com",
"ID": "CVE-2019-6675",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BIG-IP",
"version": {
"version_data": [
{
"version_value": "Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Authentication Bypass"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp;utm_medium=RSS",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp;utm_medium=RSS"
},
{
"name": "https://support.f5.com/csp/article/K55655944",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K55655944"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
"assignerShortName": "f5",
"cveId": "CVE-2019-6675",
"datePublished": "2019-11-26T14:49:31.000Z",
"dateReserved": "2019-01-22T00:00:00.000Z",
"dateUpdated": "2024-08-04T20:31:03.620Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CERTFR-2019-AVI-593
Vulnerability from certfr_avis - Published: 2019-11-26 - Updated: 2019-11-27
De multiples vulnérabilités ont été découvertes dans F5 BIG-IP. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| F5 | BIG-IP | BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 14.1.x antérieures à 14.1.2.1 | ||
| F5 | BIG-IP | BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, FPS, GTM, Link Controller, PEM) avec les deniers correctifs de type ENG Hotfix installés ; ceux-ci sont fournis directement par le service client de F5. | ||
| F5 | BIG-IP | BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 14.0.x antérieures à 14.0.1.1 | ||
| F5 | BIG-IP | BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 11.x antérieures à 11.6.5.1 | ||
| F5 | BIG-IP | BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 15.0.x antérieures à 15.0.1.1 | ||
| F5 | BIG-IP | BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 13.x antérieures à 13.1.3.5 | ||
| F5 | BIG-IP | BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 12.x antérieures à 12.1.5 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 14.1.x ant\u00e9rieures \u00e0 14.1.2.1",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, FPS, GTM, Link Controller, PEM) avec les deniers correctifs de type ENG Hotfix install\u00e9s ; ceux-ci sont fournis directement par le service client de F5.",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 14.0.x ant\u00e9rieures \u00e0 14.0.1.1",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 11.x ant\u00e9rieures \u00e0 11.6.5.1",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 15.0.x ant\u00e9rieures \u00e0 15.0.1.1",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 13.x ant\u00e9rieures \u00e0 13.1.3.5",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
},
{
"description": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 12.x ant\u00e9rieures \u00e0 12.1.5",
"product": {
"name": "BIG-IP",
"vendor": {
"name": "F5",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-6674",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6674"
},
{
"name": "CVE-2019-6669",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6669"
},
{
"name": "CVE-2019-6675",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6675"
},
{
"name": "CVE-2019-6667",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6667"
},
{
"name": "CVE-2019-6666",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6666"
},
{
"name": "CVE-2019-6671",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6671"
},
{
"name": "CVE-2019-6672",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6672"
},
{
"name": "CVE-2018-7160",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7160"
},
{
"name": "CVE-2019-6668",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6668"
},
{
"name": "CVE-2019-6670",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6670"
},
{
"name": "CVE-2019-6660",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6660"
},
{
"name": "CVE-2019-6673",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6673"
}
],
"initial_release_date": "2019-11-26T00:00:00",
"last_revision_date": "2019-11-27T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-593",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-11-26T00:00:00.000000"
},
{
"description": "Ajout des bulletins de s\u00e9curit\u00e9 F5 du 27 novembre 2019",
"revision_date": "2019-11-27T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans F5 BIG-IP. Elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance et un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans F5 BIG-IP",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K05765031 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K05765031"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K39225055 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K39225055"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K63025104 du 25 novembre 2019",
"url": "https://support.f5.com/csp/article/K63025104"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K49827114 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K49827114"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K81557381 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K81557381"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K21135478 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K21135478"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K11447758 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K11447758"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K23860356 du 22 novembre 2019",
"url": "https://support.f5.com/csp/article/K23860356"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K82781208 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K82781208"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K55655944 du 25 novembre 2019",
"url": "https://support.f5.com/csp/article/K55655944"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K14703097 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K14703097"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 F5 K92411323 du 27 novembre 2019",
"url": "https://support.f5.com/csp/article/K92411323"
}
]
}
GSD-2019-6675
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-6675",
"description": "BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso",
"id": "GSD-2019-6675"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-6675"
],
"details": "BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso",
"id": "GSD-2019-6675",
"modified": "2023-12-13T01:23:49.247889Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "f5sirt@f5.com",
"ID": "CVE-2019-6675",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BIG-IP",
"version": {
"version_data": [
{
"version_value": "Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Authentication Bypass"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp;utm_medium=RSS",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp;utm_medium=RSS"
},
{
"name": "https://support.f5.com/csp/article/K55655944",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K55655944"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "f5sirt@f5.com",
"ID": "CVE-2019-6675"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-287"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.f5.com/csp/article/K55655944",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://support.f5.com/csp/article/K55655944"
},
{
"name": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp;utm_medium=RSS",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp;utm_medium=RSS"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2019-12-18T18:37Z",
"publishedDate": "2019-11-26T15:15Z"
}
}
}
FKIE_CVE-2019-6675
Vulnerability from fkie_nvd - Published: 2019-11-26 15:15 - Updated: 2024-11-21 04:46
Severity ?
Summary
BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7C08864C-D23D-4403-9D67-EB1AB7F4F57D",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "96684FB5-466F-4B58-BBA3-CBCFDF27D621",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "11442962-5AFB-4D58-BA3F-90143F765658",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "49B6DB7B-29D9-4F13-AFF5-766F4CF5CF86",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "010F3960-7EFE-468F-9EBA-547446C56EB9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D1E3A7CE-F6BC-440A-A0B1-EF6106ABB672",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "6F7C8338-3BF7-4D03-B188-4DB7F14331AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "14B04F68-4897-4221-A23F-A98145FB6563",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9F947831-5F17-453B-8B07-5419A9B779CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "2E773E2D-B0B3-4D23-A305-A83A1DC70942",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E4D93BE4-B068-44B9-A541-D3E2889D0F5C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "8FD01D66-E982-478F-B8AF-FBB21C46CC2B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C4A27BFB-27B7-41A9-AD5A-FC68DDB31522",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "F3D4E14B-7DDC-41CB-80B7-17EBD021E2BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "CB575189-EFBB-4CD2-8E7C-23D7BFCBD444",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4437C51C-CCC6-4CF6-AA4E-CA7A77BE3F3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "17FFC124-44BE-4865-8C18-7BF965975F9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E02044F8-EAB0-4BEC-869A-802486796E40",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "FD3B8438-DE49-4624-8395-625942BB2597",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "DFEE6516-3382-4746-A5F1-4881560192CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "812EF901-719A-493A-BE20-5CB859657982",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C4AAD738-179F-4CC1-8FD5-1F40B08DEAA5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "5BE8A9CC-8BF2-4C8F-A67D-D258E5B136CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "5ED975AD-C849-43FE-AB2C-FB750FAE67AB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9C03C669-F917-4ACB-ADC9-CC6013FB5FD8",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "BF655FC1-1321-474B-963A-F50F2FA315FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9D4CE58F-027B-4EA2-9083-3F5CDDD936E9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "8C62D097-3930-4BA6-BCDF-0A37584C9C7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "73450DCB-1CB1-4372-B966-85E4A71775D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "279A4826-8CD7-4F92-9B80-B7E013EF58B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C2B3ED27-1293-4E63-9678-B18A9493DF1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "0F431CDE-726D-44EA-B7E5-453281EEF93F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "52740FC5-B58E-45ED-A576-9038A83C0707",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "46F10A0D-69F8-442C-AFA3-D0C320E63015",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4C48E169-2376-4A76-8879-5ED5BFF44390",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9A440F75-89BF-40A6-ADD6-C275331E5C45",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3489B084-57E2-4758-AE2A-76C0527AFF40",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "DC1608ED-79BF-4991-8FD5-DDDFA5A4FC27",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "AC53ECFD-ED20-4220-89AC-580791D50198",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "309462E9-0C71-4AED-ABE3-F58D7F41EE6A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "05F8E99D-ACEF-4360-B956-12EE032DDE24",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9132BD6F-54C5-4715-BC52-608EFEAA3D1E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "DA404B80-D55A-4564-9765-D69327530EAC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "F369E66B-4FAB-4B91-8387-63C871AFFDD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "26A37E34-5164-41F9-A26E-A13C46760A8B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7690C356-6479-4D36-BEC1-7B06FE24B556",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "288D6B3F-285C-477E-96EA-A06EFA80F9B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D8CC65F7-0CD8-4303-A369-72FC6B7CB46E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9F091229-31D7-49D8-9ADB-D0F472CF3C2E",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "8AFB77E4-038D-4986-8C19-A1A138AD0103",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "ADB7C036-2D2A-44A7-8126-D3CA265CDD3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "63641642-900B-4B73-9218-8A1A84091517",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "35022CCB-0FF9-441F-848E-F0AAF6B03BFE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "0C9C4111-9B4E-43AE-BFF3-3CC007317773",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "74A4AD71-6692-4ADA-A462-FAEE4D276B09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "F71066FB-8121-45B4-8842-5084CF7697D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E17F6901-63E0-4CE6-81DD-C53A2ADEE946",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "AB4A3E56-84BE-4073-AA19-C5BE82753469",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3105BD37-0D0A-446D-9840-D2E9278CBD45",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "B8A10BF7-2BB0-4B3F-A09B-1ABF3B9C082A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "F3913B51-650D-468B-A47A-93D59FDEE127",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "1A64DAD8-4A59-41A8-BEC5-8CB4C47AE66A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "324961F6-05E4-4DF7-BD42-E274849F70AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "B0E1D5DB-3BA7-4138-8537-56CA945F055D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D1239E48-80F8-4084-B17F-2B9E679CAA3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "124D3121-26A3-41C4-BE97-B74857B432A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "0C9AFBF8-C9A2-456D-A347-1B77701F1931",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4805FBCC-A730-4B9B-A8C2-DD3A19F582B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "949A0D5E-895B-472C-B255-85593B0013E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "044E58FB-7BFE-4AEF-90C8-17094EE2FFE5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "214FD42A-B3F3-4F03-ACD3-F4B80F93C7CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7D41EED6-34F3-4EEC-84BC-8A2FCD2C91E4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2048A8EE-ABBB-4594-9D3B-A9CC14147476",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "49471CE0-CAB7-4EFF-BCC0-A43778BA2004",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "5399479C-222A-4483-B80C-A1A08A08CBD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "739819C2-773E-4DEF-A763-F8F64D94A340",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "03F549C3-0D6B-4F5C-8294-B52DD5C9A462",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "AA317536-08C8-4E77-BA83-A81C4150D76A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "A478565C-C2D1-4CC6-B705-F87F007E5B41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "1A989D0A-25C1-4E21-92FC-D2633D744A78",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "86AB4168-5DB3-4E13-9440-6EC43DBBF09D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "55CE5675-47E6-44D7-BBCA-0CF16E462CE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3FC98132-2B56-45B6-9BCB-E1A8C10605D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "6C326776-F10D-4988-93B1-2D6111BA47B4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "ACD47BEC-16BD-4860-9A5C-5C2E5884C7DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "303AC4BC-DCA2-4FD8-A8DF-A2FABA270F1B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "FA4C4EF3-030B-48CE-B158-7DA1EF008415",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "47A169E4-A065-42B4-B21F-0671A300C80C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "0B7E3412-E87A-4F97-B2EC-AD6E70568768",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "25B5C85A-D5E2-4C6A-B6FD-2469D12B1C7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E0FC4FDE-E7A7-4175-9A5A-33556DB7D815",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "39A8BCF2-8B73-45E8-9763-F91F93D6D067",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C649161B-4A7F-41EF-BF68-CF4C8CCD1994",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "75B39CB7-74C3-4CCA-86FF-0334A462B64D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E1CE733F-506C-48E2-9195-52F0B8DB4DED",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D4D674CD-7DD1-44B5-AC40-CF813B25F9F6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0F52740C-3A00-41D6-A1F7-57E0628D8E6C",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4498F898-07E1-4759-8106-F76260CE32D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3002CAE6-0CA8-4B09-BD91-827F5643D7E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "92054583-F387-4DCA-9FE5-EF6600D73386",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "EE11CA02-B582-4011-85C7-5A596FEF02BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "2527B516-3F14-42A9-9833-43992E84F860",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "88D9D390-2056-43A7-A350-642EB639CEBE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "083BD544-E07D-4136-B83F-664A7514EA0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "03BCE7B5-63F9-42D0-BD99-581A26B7E72F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "F32D74C4-8E77-44F7-8708-7DED9ADC5686",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "580820B0-143B-447D-93F0-40113E165563",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "FCC4DAAC-0982-4A8C-B678-3B64D53E3978",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9BA9DC82-1E84-4188-94A4-CF42365E7334",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "2E3CD883-57DA-4C37-B5F4-2F4598B1E158",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "8CE0300B-5E9D-49E1-98E8-849A4ADE96B4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "6EDF6FAB-D1C1-4F65-8ADC-C260CF1BCBC4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7CB17420-568B-4E01-AE35-3F18276DF4D8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "A9E6C771-610D-4DFF-8B77-3A52E8B16C00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "5C40A871-5E53-4113-A627-DCD597F78C82",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "018F0390-F4EA-435A-83C2-CD71520D1212",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "304D20C3-6332-4620-9FCD-11D6784AF541",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "258622FA-3D74-4D44-B39D-2723047E46AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "A2810654-DFEE-442A-BBE2-8C4B88DED37B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "397E08B3-9AF2-4C1D-8A81-ECA6E9E2E9B2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AF6DD615-2C26-4217-B99A-1BE61B9AACA7",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D8D28A65-2C8C-4954-A3E9-7E55A5968BC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "637B13ED-F27A-42C3-A43F-95027C862E19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D0A0630D-C349-4820-9D8B-B8BEEF514381",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "8F03EDC6-D650-4CCE-95ED-7273FEB16DB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "90EA8DF0-D65B-4F82-A192-1F1F6A322CC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "354DB756-9658-4B76-987C-68691A5C6EEB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "56987C7D-F72C-4563-9396-A275B975B659",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "535E7103-8882-46F4-828F-852005E817A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4C7D2BFA-858D-4DD1-83B4-719B60B4954C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "1A8FA166-36D7-47A9-A3E7-26056CF7CB31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "36F45BAE-B627-4051-BE5E-9AC5CCE3F6AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9AE2CCED-1313-42E4-881C-7A5DB811AC71",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "2A453598-9FDB-47AF-9326-6D389B412EF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "8140C4EA-9232-457D-9F88-EC06C7F08C3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "CE3559C9-3829-4F89-BE87-72A89008AB80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "0BC8B233-2E19-44D5-90DF-1393F7170539",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "A11B0351-7BA5-43A8-B3E4-B5281BDB7B44",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "DBFB2038-6263-4A59-941E-9026B486300A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "86BA2F01-5CAF-4B83-845C-10651750FC90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4450C458-7DCF-42C2-91FC-A0D60B39C5ED",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E0E8471C-35D4-4CF9-B6D7-DCCEFBCAC4A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "138A95D4-15EB-4111-B1F0-CF4B90A52D1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "327F49B2-39E3-4478-8035-48C3DAE01E5B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E4DE9450-27F0-40B0-820B-18823B87A512",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "2F65BCB6-03CB-449E-B150-8A148CED35DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9062127F-2165-43E8-935E-5E379DDD3626",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4DF21F72-F3BC-49B3-B0EA-B9F2295B4005",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9280FBC9-0A3A-44CD-ADD7-21EE8549FD60",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D42FC235-CE63-4E5F-97B7-EB4D301F7EB1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "12BFD481-1B17-4DB0-864B-87850499F5B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "6DDC7166-363C-4972-832C-19B03EAE291D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "1DFFF13D-0F07-41C6-B3A6-9F948B9D27EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "0540E893-62A2-4DB8-9B80-86921B2FC9EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E5CB258A-D294-4ACF-B60D-18C7D062170C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C461E947-18C3-4764-838D-49880C9EB5DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7005A9DD-6709-448B-AD91-CF01927EAE9C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D9AD8C8C-F75A-4765-AC9C-D5676134757D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "FBC9B31B-CBFB-43B1-8810-461EB7883556",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "B0F7A521-5FC4-4028-AF25-D8D816B8A7FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "22AB33C1-7A17-4AE2-91B3-6AD53533BAE8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9A138C14-EBE3-49A6-918D-7A27107F4422",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "63B81EAB-FCC3-4794-A9A5-CA63A2C4BB43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4C8E5D27-3A1D-4890-AE23-55E9886C8437",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E9587815-AF56-428D-8957-DEC4B8B2F7EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "44C1CC2A-E9BD-4697-AADA-9E8AF9B2FB22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "350696F0-28D6-474C-810C-F35B4333EAC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "1B4D07FF-ED32-4C7D-BC48-A3CBD1701615",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F683AC08-1FB1-4FD0-9F62-CD7F2F4E03FA",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "2B3CCE79-B68D-41B8-8037-543938DE788E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E67B9B25-DA9E-4E9B-8860-159D049D68C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "AA09C1C3-2FA0-49E2-B5BE-9EC7014B194C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "A558D953-B30E-4D8B-A439-8044D9F79D16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E0301CCA-9225-4E1F-BD7A-84935E267F22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "79323146-9DA8-41C5-88FF-197AFE18DFEA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3BDD94B7-5654-42B2-867C-4B25238793E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "06DAE88D-071F-4D63-8176-FF49DD1A84E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7F8B0C76-2433-4CD9-B3AA-F08714F24060",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E0301E93-B566-4755-85F5-630463499838",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4D9B4BC1-18A0-47BD-80DB-5C07D99D1452",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "1F0DC175-51D1-432C-908C-A5A5FEF8E2A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "327680CE-64B0-4EF8-ADA1-0BF3DA573191",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D2933241-0DA3-4C8C-9E69-3A187E007DD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "DB91C0D6-7BBA-434E-991C-1F724DED8352",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "73E82218-C3D3-4FB2-B4E5-373EEEB02014",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "5170BC6E-3DF8-4D78-A508-86A49460C388",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "95B38F19-6344-4114-BE42-9C15C737514D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C17E7ED4-2F15-4077-B4D1-7143370FD879",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3A2D39F5-6254-4EF8-BF5E-AAC3A4005BA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "31552CB7-F2E4-46DA-BA26-9313C6327B39",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "0914529C-B005-40A3-A253-E5D98E302E3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "DBD49908-2D9B-4A69-811C-60BE021FAADA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6A9207E1-58DD-4870-B3C5-C53D3B0536B2",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "539001CE-1D56-4755-AB6E-68A3D500242C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7563887D-00BF-4C4E-A17B-3AE348C7B1AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "CE515371-13A9-4A77-BEAA-00B8474E8EF9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "849A136A-4909-49DA-A774-EE4FC451C1A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "AADCE244-53C5-4BBA-BAEF-07F66BDFE157",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "30352690-9323-4971-BB52-B16BB36DC1E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "20F7016F-2DC2-47C6-84BA-32F87D6C5D27",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D4090879-0CD9-49C0-BE34-CE0C4FBD6EA1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3B92D339-5258-40E7-AB60-94956E56E368",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D9559CC3-E2FD-4BC7-BF6F-CAD8CF7FE1B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "A7D441CD-6FEC-4DED-8376-755E1FEA732C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "0EAD7CB5-91C6-40AC-9BCE-E10D65E8995F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7AB6C7BE-CBFE-4C12-87AA-FB5B3110CE47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "6A211B6B-C3F5-41E0-AB63-A278E0CE8D61",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "66BB5812-A071-4131-BDA3-2405A40796D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "5F6C4BED-0ACC-46A1-BF3E-7ADDA039A78B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "CAC14976-6302-4F68-94CF-B3726C64BD3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E76F5B71-814F-4943-B5F7-E99AA604F109",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "40667CF2-D361-42EE-93CA-839EDF3B1C81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D7158162-F13C-4D8E-B7ED-7B580B3FB6B4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "128956F1-71A6-4E5A-8416-7765F1896CBA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "30963FCB-89C1-4220-AFF0-B3DB7F124F63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "582E4264-1526-4FD3-A1CB-73789E800E75",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E6FA5632-7BBA-449D-962F-86B0EA064BC8",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "9E9660D3-08A5-4A4F-9A7F-58BC7A082E97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "852C9B08-7284-4CA3-B32A-C1EACC436256",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "404C1A51-2152-4F04-9C81-99E2733DE16F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "799FCCFF-5D4D-485F-BE0F-3995FDFE5A38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3F2684BA-5BA1-4FEF-A0A9-5CE8C32491DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "002E61EB-666E-49E1-A532-E324473AAE83",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "DE0D7201-183E-4458-90A4-ADDD0C31FE19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "30CB8741-8386-4B7C-B0F3-C2A443A7335E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "45A58FDA-BE89-45A3-9C0B-4FF6CB33EB3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "AE1CEFDC-D49C-4340-AE14-A17C0A9ACC3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "BA0BDBC6-F2DA-4DD5-9277-A6A960698D28",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "F37D6E7D-DF7A-49D7-87A8-3A59A4E6D1D8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "A731EE2F-C90A-457C-B6DD-870647FF441C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "2403FE0E-D8AA-465B-8CA8-FFA9617AA4C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "74547C4E-D799-4E1E-A4B7-E277778599FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "A59381AF-C2E6-4737-9B8B-098D22830286",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "FCA52376-EFAD-4F53-A4DE-FA49E34853D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "ED21CA0B-7953-4A07-97A8-66AE7C39FF70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "09096E3C-10B8-4CAA-8618-A406F1C3F1E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "5B6F5CB1-9C74-4A5D-9A18-737B80FE3808",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "615A2D67-17DF-47B6-A4FC-E1224122DCAC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "B75B672A-A3B8-4671-ABC3-5E2664A10E7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "D329DA43-40F4-4ED5-BA6E-DE04C9B51F34",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"matchCriteriaId": "574C58F4-807D-4235-95E3-CEE53CAC122C",
"versionEndIncluding": "15.0.1.0.48.11-eng_hotfix",
"versionStartIncluding": "15.0.1.0.33.11-eng_hotfix",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.3.0.79.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C5D769B8-DEB7-47EC-9C53-6F74AF5D7730",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.3.0.97.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "77621FD1-3E19-475B-9C4E-FDFB073027F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.3.0.99.6-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "614BEAB6-9154-4B56-B51B-8DC70B2A869D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.5.0.15.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "85177ECB-409B-4FDD-B667-AB6F0A49BF9F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.5.0.36.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "26B9862F-BADB-401F-98B0-39AC098F245C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.5.0.40.5-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "25E0ADB7-E293-429E-8C4F-B7B95A81BFA4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.6.0.11.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "629DAECE-4281-4C7A-9104-2FEC9814B482",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.6.0.14.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "4F6A86B4-18F7-4EAD-AB81-CF119612A6E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.6.0.68.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "613C463A-2363-4112-9E95-736A3A450B7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.0.6.0.70.9-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7CEB27C6-6869-466B-85C8-CDCE182EC506",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.0.11.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "225C73D0-F681-4965-821B-629D59881CFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.0.18.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "17560AB8-5A49-4B2C-9618-1CF27AD9BF1B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.0.32.37-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "3DE04A93-6679-4B59-81DD-8D5D31363B88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.14.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "B05E62D3-865A-46B8-A813-5747BDC452D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.16.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "835B53C1-AF41-49EA-BF96-456FF8D35AC9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.34.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "496529AD-556D-4D00-95C2-B04E3A536113",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.46.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "BD8E7E19-4A28-4A55-AA90-735B92BA597A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.97.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "CF03894C-2C3F-4AEE-A922-03B2522FAD88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.99.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "E42BF3CB-B93F-4924-BD55-4FA9D9E3184A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.105.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "5B7A2607-1DF5-4CDB-BBD1-B5D2BE45C861",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.111.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C132D8F2-1336-4B4E-BA79-66B41885B48F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.115.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "7483939D-4B0C-4D2C-A1CF-471183970E24",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.2.1.0.122.4-eng_hotfix:*:*:*:*:*:*:*",
"matchCriteriaId": "C1AD1708-E6C1-49EA-B57A-142F154E1D67",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso"
},
{
"lang": "es",
"value": "Las configuraciones BIG-IP que utilizan Active Directory, LDAP o Client Certificate LDAP para la autenticaci\u00f3n de administraci\u00f3n con varios servidores est\u00e1n expuestas a una vulnerabilidad que permite una omisi\u00f3n de identificaci\u00f3n. Esto puede resultar en un compromiso completo del sistema. Este problema solo afecta a las revisiones de ingenier\u00eda espec\u00edficas que utilizan la configuraci\u00f3n de autenticaci\u00f3n mencionada anteriormente. NOTA: Esta vulnerabilidad no afecta a ninguna de las versiones principales, menores o de mantenimiento de BIG-IP que obtuvo desde downloads.f5.com. Las compilaciones Engineering Hotfix afectadas son las siguientes: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso."
}
],
"id": "CVE-2019-6675",
"lastModified": "2024-11-21T04:46:56.030",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-11-26T15:15:13.677",
"references": [
{
"source": "f5sirt@f5.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.f5.com/csp/article/K55655944"
},
{
"source": "f5sirt@f5.com",
"url": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp%3Butm_medium=RSS"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.f5.com/csp/article/K55655944"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp%3Butm_medium=RSS"
}
],
"sourceIdentifier": "f5sirt@f5.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-287"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-6PJW-WQ93-MV92
Vulnerability from github – Published: 2022-05-24 17:02 – Updated: 2022-05-24 17:02
VLAI?
Details
BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso
{
"affected": [],
"aliases": [
"CVE-2019-6675"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-11-26T15:15:00Z",
"severity": "HIGH"
},
"details": "BIG-IP configurations using Active Directory, LDAP, or Client Certificate LDAP for management authentication with multiple servers are exposed to a vulnerability which allows an authentication bypass. This can result in a complete compromise of the system. This issue only impacts specific engineering hotfixes using the aforementioned authentication configuration. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.3.0.79.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.97.6-ENG.iso, Hotfix-BIGIP-14.1.0.3.0.99.6-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.15.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.36.5-ENG.iso, Hotfix-BIGIP-14.1.0.5.0.40.5-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.11.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.14.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.68.9-ENG.iso, Hotfix-BIGIP-14.1.0.6.0.70.9-ENG.iso, Hotfix-BIGIP-14.1.2.0.11.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.18.37-ENG.iso, Hotfix-BIGIP-14.1.2.0.32.37-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.46.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.14.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.16.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.34.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.97.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.99.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.105.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.111.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.115.4-ENG.iso, Hotfix-BIGIP-14.1.2.1.0.122.4-ENG.iso, Hotfix-BIGIP-15.0.1.0.33.11-ENG.iso, Hotfix-BIGIP-15.0.1.0.48.11-ENG.iso",
"id": "GHSA-6pjw-wq93-mv92",
"modified": "2022-05-24T17:02:16Z",
"published": "2022-05-24T17:02:16Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6675"
},
{
"type": "WEB",
"url": "https://support.f5.com/csp/article/K55655944"
},
{
"type": "WEB",
"url": "https://support.f5.com/csp/article/K55655944?utm_source=f5support\u0026amp;utm_medium=RSS"
}
],
"schema_version": "1.4.0",
"severity": []
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…