Vulnerabilities > CVE-2019-6594 - Infinite Loop vulnerability in F5 products

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

CWE-835

nessus

NVD

Published: 2019-02-26

Updated: 2020-08-24

Summary

On BIG-IP 11.5.1-11.6.3.2, 12.1.3.4-12.1.3.7, 13.0.0 HF1-13.1.1.1, and 14.0.0-14.0.0.2, Multi-Path TCP (MPTCP) does not protect against multiple zero length DATA_FINs in the reassembly queue, which can lead to an infinite loop in some circumstances.

Vulnerable Configurations

Part	Description	Count
Application	F5 F5 BIG IP Access Policy Manager 11.5.3 F5 BIG IP Access Policy Manager 11.5.4 F5 BIG IP Access Policy Manager 11.5.5 F5 BIG IP Access Policy Manager 11.5.6 F5 BIG IP Access Policy Manager 11.5.7 F5 BIG IP Access Policy Manager 11.5.8 F5 BIG IP Access Policy Manager 11.5.9 F5 BIG IP Access Policy Manager 11.5.10 F5 BIG IP Access Policy Manager 11.6.0 F5 BIG IP Access Policy Manager 11.6.1 F5 BIG IP Access Policy Manager 11.6.2 F5 BIG IP Access Policy Manager 11.6.3 F5 BIG IP Access Policy Manager 11.6.3.1 F5 BIG IP Access Policy Manager 11.6.3.2 F5 BIG IP Access Policy Manager 12.1.3.4 F5 BIG IP Access Policy Manager 12.1.3.5 F5 BIG IP Access Policy Manager 12.1.3.6 F5 BIG IP Access Policy Manager 12.1.3.7 F5 BIG IP Access Policy Manager 13.0.0 F5 BIG IP Access Policy Manager 13.0.1 F5 BIG IP Access Policy Manager 13.1.0 F5 BIG IP Access Policy Manager 13.1.0.1 F5 BIG IP Access Policy Manager 13.1.0.2 F5 BIG IP Access Policy Manager 13.1.0.3 F5 BIG IP Access Policy Manager 13.1.0.4 F5 BIG IP Access Policy Manager 13.1.0.5 F5 BIG IP Access Policy Manager 13.1.0.6 F5 BIG IP Access Policy Manager 13.1.0.7 F5 BIG IP Access Policy Manager 13.1.0.8 F5 BIG IP Access Policy Manager 13.1.1 F5 BIG IP Access Policy Manager 13.1.1.1 F5 BIG IP Access Policy Manager 14.0.0 F5 BIG IP Access Policy Manager 14.0.0.2 F5 BIG IP Access Policy Manager 11.5.1 F5 BIG IP Access Policy Manager 11.5.2 F5 BIG IP Local Traffic Manager 11.5.1 F5 BIG IP Local Traffic Manager 11.5.2 F5 BIG IP Local Traffic Manager 11.5.3 F5 BIG IP Local Traffic Manager 11.5.4 F5 BIG IP Local Traffic Manager 11.5.5 F5 BIG IP Local Traffic Manager 11.5.6 F5 BIG IP Local Traffic Manager 11.5.7 F5 BIG IP Local Traffic Manager 11.5.8 F5 BIG IP Local Traffic Manager 11.5.9 F5 BIG IP Local Traffic Manager 11.5.10 F5 BIG IP Local Traffic Manager 11.6.0 F5 BIG IP Local Traffic Manager 11.6.1 F5 BIG IP Local Traffic Manager 11.6.2 F5 BIG IP Local Traffic Manager 11.6.3 F5 BIG IP Local Traffic Manager 11.6.3.1 F5 BIG IP Local Traffic Manager 11.6.3.2 F5 BIG IP Local Traffic Manager 12.1.3.4 F5 BIG IP Local Traffic Manager 12.1.3.5 F5 BIG IP Local Traffic Manager 12.1.3.6 F5 BIG IP Local Traffic Manager 12.1.3.7 F5 BIG IP Local Traffic Manager 13.0.0 F5 BIG IP Local Traffic Manager 13.0.1 F5 BIG IP Local Traffic Manager 13.1.0 F5 BIG IP Local Traffic Manager 13.1.0.0 F5 BIG IP Local Traffic Manager 13.1.0.1 F5 BIG IP Local Traffic Manager 13.1.0.2 F5 BIG IP Local Traffic Manager 13.1.0.3 F5 BIG IP Local Traffic Manager 13.1.0.4 F5 BIG IP Local Traffic Manager 13.1.0.5 F5 BIG IP Local Traffic Manager 13.1.0.6 F5 BIG IP Local Traffic Manager 13.1.0.7 F5 BIG IP Local Traffic Manager 13.1.0.8 F5 BIG IP Local Traffic Manager 13.1.1 F5 BIG IP Local Traffic Manager 13.1.1.1 F5 BIG IP Local Traffic Manager 14.0.0 F5 BIG IP Local Traffic Manager 14.0.0.2 F5 BIG IP Advanced Firewall Manager 11.5.1 F5 BIG IP Advanced Firewall Manager 11.5.2 F5 BIG IP Advanced Firewall Manager 11.5.3 F5 BIG IP Advanced Firewall Manager 11.5.4 F5 BIG IP Advanced Firewall Manager 11.5.5 F5 BIG IP Advanced Firewall Manager 11.5.6 F5 BIG IP Advanced Firewall Manager 11.5.7 F5 BIG IP Advanced Firewall Manager 11.5.8 F5 BIG IP Advanced Firewall Manager 11.5.9 F5 BIG IP Advanced Firewall Manager 11.5.10 F5 BIG IP Advanced Firewall Manager 11.6.0 F5 BIG IP Advanced Firewall Manager 11.6.1 F5 BIG IP Advanced Firewall Manager 11.6.2 F5 BIG IP Advanced Firewall Manager 11.6.3 F5 BIG IP Advanced Firewall Manager 11.6.3.1 F5 BIG IP Advanced Firewall Manager 11.6.3.2 F5 BIG IP Advanced Firewall Manager 12.1.3.4 F5 BIG IP Advanced Firewall Manager 12.1.3.5 F5 BIG IP Advanced Firewall Manager 12.1.3.6 F5 BIG IP Advanced Firewall Manager 12.1.3.7 F5 BIG IP Advanced Firewall Manager 13.0.0 F5 BIG IP Advanced Firewall Manager 13.0.1 F5 BIG IP Advanced Firewall Manager 13.1.0 F5 BIG IP Advanced Firewall Manager 13.1.0.0 F5 BIG IP Advanced Firewall Manager 13.1.0.1 F5 BIG IP Advanced Firewall Manager 13.1.0.2 F5 BIG IP Advanced Firewall Manager 13.1.0.3 F5 BIG IP Advanced Firewall Manager 13.1.0.4 F5 BIG IP Advanced Firewall Manager 13.1.0.5 F5 BIG IP Advanced Firewall Manager 13.1.0.6 F5 BIG IP Advanced Firewall Manager 13.1.0.7 F5 BIG IP Advanced Firewall Manager 13.1.0.8 F5 BIG IP Advanced Firewall Manager 13.1.1 F5 BIG IP Advanced Firewall Manager 13.1.1.1 F5 BIG IP Advanced Firewall Manager 14.0.0 F5 BIG IP Advanced Firewall Manager 14.0.0.1 F5 BIG IP Advanced Firewall Manager 14.0.0.2 F5 BIG IP Analytics 11.5.1 F5 BIG IP Analytics 11.5.2 F5 BIG IP Analytics 11.5.3 F5 BIG IP Analytics 11.5.4 F5 BIG IP Analytics 11.5.5 F5 BIG IP Analytics 11.5.6 F5 BIG IP Analytics 11.5.7 F5 BIG IP Analytics 11.5.8 F5 BIG IP Analytics 11.5.9 F5 BIG IP Analytics 11.5.10 F5 BIG IP Analytics 11.6.0 F5 BIG IP Analytics 11.6.1 F5 BIG IP Analytics 11.6.2 F5 BIG IP Analytics 11.6.3 F5 BIG IP Analytics 11.6.3.1 F5 BIG IP Analytics 11.6.3.2 F5 BIG IP Analytics 12.1.3.4 F5 BIG IP Analytics 12.1.3.5 F5 BIG IP Analytics 12.1.3.6 F5 BIG IP Analytics 12.1.3.7 F5 BIG IP Analytics 13.0.0 F5 BIG IP Analytics 13.0.1 F5 BIG IP Analytics 13.1.0 F5 BIG IP Analytics 13.1.0.0 F5 BIG IP Analytics 13.1.0.1 F5 BIG IP Analytics 13.1.0.2 F5 BIG IP Analytics 13.1.0.3 F5 BIG IP Analytics 13.1.0.4 F5 BIG IP Analytics 13.1.0.5 F5 BIG IP Analytics 13.1.0.6 F5 BIG IP Analytics 13.1.0.7 F5 BIG IP Analytics 13.1.0.8 F5 BIG IP Analytics 13.1.1 F5 BIG IP Analytics 13.1.1.1 F5 BIG IP Analytics 14.0.0 F5 BIG IP Analytics 14.0.0.1 F5 BIG IP Analytics 14.0.0.2 F5 BIG IP Application Security Manager 11.5.1 F5 BIG IP Application Security Manager 11.5.2 F5 BIG IP Application Security Manager 11.5.3 F5 BIG IP Application Security Manager 11.5.4 F5 BIG IP Application Security Manager 11.5.5 F5 BIG IP Application Security Manager 11.5.6 F5 BIG IP Application Security Manager 11.5.7 F5 BIG IP Application Security Manager 11.5.8 F5 BIG IP Application Security Manager 11.5.9 F5 BIG IP Application Security Manager 11.5.10 F5 BIG IP Application Security Manager 11.6.0 F5 BIG IP Application Security Manager 11.6.1 F5 BIG IP Application Security Manager 11.6.2 F5 BIG IP Application Security Manager 11.6.3 F5 BIG IP Application Security Manager 11.6.3.1 F5 BIG IP Application Security Manager 11.6.3.2 F5 BIG IP Application Security Manager 12.1.3.4 F5 BIG IP Application Security Manager 12.1.3.5 F5 BIG IP Application Security Manager 12.1.3.6 F5 BIG IP Application Security Manager 12.1.3.7 F5 BIG IP Application Security Manager 13.0.0 F5 BIG IP Application Security Manager 13.0.1 F5 BIG IP Application Security Manager 13.1.0 F5 BIG IP Application Security Manager 13.1.0.0 F5 BIG IP Application Security Manager 13.1.0.1 F5 BIG IP Application Security Manager 13.1.0.2 F5 BIG IP Application Security Manager 13.1.0.3 F5 BIG IP Application Security Manager 13.1.0.4 F5 BIG IP Application Security Manager 13.1.0.5 F5 BIG IP Application Security Manager 13.1.0.6 F5 BIG IP Application Security Manager 13.1.0.7 F5 BIG IP Application Security Manager 13.1.0.8 F5 BIG IP Application Security Manager 13.1.1 F5 BIG IP Application Security Manager 13.1.1.1 F5 BIG IP Application Security Manager 14.0.0 F5 BIG IP Application Security Manager 14.0.0.1 F5 BIG IP Application Security Manager 14.0.0.2 F5 BIG IP Domain Name System 11.5.1 F5 BIG IP Domain Name System 11.5.2 F5 BIG IP Domain Name System 11.5.3 F5 BIG IP Domain Name System 11.5.4 F5 BIG IP Domain Name System 11.5.5 F5 BIG IP Domain Name System 11.5.6 F5 BIG IP Domain Name System 11.5.7 F5 BIG IP Domain Name System 11.5.8 F5 BIG IP Domain Name System 11.5.9 F5 BIG IP Domain Name System 11.5.10 F5 BIG IP Domain Name System 11.6.0 F5 BIG IP Domain Name System 11.6.1 F5 BIG IP Domain Name System 11.6.2 F5 BIG IP Domain Name System 11.6.3 F5 BIG IP Domain Name System 11.6.3.1 F5 BIG IP Domain Name System 11.6.3.2 F5 BIG IP Domain Name System 12.1.3.4 F5 BIG IP Domain Name System 12.1.3.5 F5 BIG IP Domain Name System 12.1.3.6 F5 BIG IP Domain Name System 12.1.3.7 F5 BIG IP Domain Name System 13.0.0 F5 BIG IP Domain Name System 13.0.1 F5 BIG IP Domain Name System 13.1.0 F5 BIG IP Domain Name System 13.1.0.0 F5 BIG IP Domain Name System 13.1.0.1 F5 BIG IP Domain Name System 13.1.0.2 F5 BIG IP Domain Name System 13.1.0.3 F5 BIG IP Domain Name System 13.1.0.4 F5 BIG IP Domain Name System 13.1.0.5 F5 BIG IP Domain Name System 13.1.0.6 F5 BIG IP Domain Name System 13.1.0.7 F5 BIG IP Domain Name System 13.1.0.8 F5 BIG IP Domain Name System 13.1.1 F5 BIG IP Domain Name System 13.1.1.1 F5 BIG IP Domain Name System 14.0.0 F5 BIG IP Domain Name System 14.0.0.1 F5 BIG IP Domain Name System 14.0.0.2 F5 BIG IP Edge Gateway 11.5.1 F5 BIG IP Edge Gateway 11.5.2 F5 BIG IP Edge Gateway 11.5.3 F5 BIG IP Edge Gateway 11.5.4 F5 BIG IP Edge Gateway 11.5.5 F5 BIG IP Edge Gateway 11.5.6 F5 BIG IP Edge Gateway 11.5.7 F5 BIG IP Edge Gateway 11.5.8 F5 BIG IP Edge Gateway 11.5.9 F5 BIG IP Edge Gateway 11.5.10 F5 BIG IP Edge Gateway 11.6.0 F5 BIG IP Edge Gateway 11.6.1 F5 BIG IP Edge Gateway 11.6.2 F5 BIG IP Edge Gateway 11.6.3 F5 BIG IP Edge Gateway 11.6.3.1 F5 BIG IP Edge Gateway 11.6.3.2 F5 BIG IP Edge Gateway 12.1.3.4 F5 BIG IP Edge Gateway 12.1.3.5 F5 BIG IP Edge Gateway 12.1.3.6 F5 BIG IP Edge Gateway 12.1.3.7 F5 BIG IP Edge Gateway 13.0.0 F5 BIG IP Edge Gateway 13.0.1 F5 BIG IP Edge Gateway 13.1.0 F5 BIG IP Edge Gateway 13.1.0.0 F5 BIG IP Edge Gateway 13.1.0.1 F5 BIG IP Edge Gateway 13.1.0.2 F5 BIG IP Edge Gateway 13.1.0.3 F5 BIG IP Edge Gateway 13.1.0.4 F5 BIG IP Edge Gateway 13.1.0.5 F5 BIG IP Edge Gateway 13.1.0.6 F5 BIG IP Edge Gateway 13.1.0.7 F5 BIG IP Edge Gateway 13.1.0.8 F5 BIG IP Edge Gateway 13.1.1 F5 BIG IP Edge Gateway 13.1.1.1 F5 BIG IP Edge Gateway 14.0.0 F5 BIG IP Edge Gateway 14.0.0.1 F5 BIG IP Edge Gateway 14.0.0.2 F5 BIG IP Fraud Protection Service 11.5.1 F5 BIG IP Fraud Protection Service 11.5.2 F5 BIG IP Fraud Protection Service 11.5.3 F5 BIG IP Fraud Protection Service 11.5.4 F5 BIG IP Fraud Protection Service 11.5.5 F5 BIG IP Fraud Protection Service 11.5.6 F5 BIG IP Fraud Protection Service 11.5.7 F5 BIG IP Fraud Protection Service 11.5.8 F5 BIG IP Fraud Protection Service 11.5.9 F5 BIG IP Fraud Protection Service 11.5.10 F5 BIG IP Fraud Protection Service 11.6.0 F5 BIG IP Fraud Protection Service 11.6.1 F5 BIG IP Fraud Protection Service 11.6.2 F5 BIG IP Fraud Protection Service 11.6.3 F5 BIG IP Fraud Protection Service 11.6.3.1 F5 BIG IP Fraud Protection Service 11.6.3.2 F5 BIG IP Fraud Protection Service 12.1.3.4 F5 BIG IP Fraud Protection Service 12.1.3.5 F5 BIG IP Fraud Protection Service 12.1.3.6 F5 BIG IP Fraud Protection Service 12.1.3.7 F5 BIG IP Fraud Protection Service 13.0.0 F5 BIG IP Fraud Protection Service 13.0.1 F5 BIG IP Fraud Protection Service 13.1.0 F5 BIG IP Fraud Protection Service 13.1.0.0 F5 BIG IP Fraud Protection Service 13.1.0.1 F5 BIG IP Fraud Protection Service 13.1.0.2 F5 BIG IP Fraud Protection Service 13.1.0.3 F5 BIG IP Fraud Protection Service 13.1.0.4 F5 BIG IP Fraud Protection Service 13.1.0.5 F5 BIG IP Fraud Protection Service 13.1.0.6 F5 BIG IP Fraud Protection Service 13.1.0.7 F5 BIG IP Fraud Protection Service 13.1.0.8 F5 BIG IP Fraud Protection Service 13.1.1 F5 BIG IP Fraud Protection Service 13.1.1.1 F5 BIG IP Fraud Protection Service 14.0.0 F5 BIG IP Fraud Protection Service 14.0.0.1 F5 BIG IP Fraud Protection Service 14.0.0.2 F5 BIG IP Global Traffic Manager 11.5.1 F5 BIG IP Global Traffic Manager 11.5.2 F5 BIG IP Global Traffic Manager 11.5.3 F5 BIG IP Global Traffic Manager 11.5.4 F5 BIG IP Global Traffic Manager 11.5.5 F5 BIG IP Global Traffic Manager 11.5.6 F5 BIG IP Global Traffic Manager 11.5.7 F5 BIG IP Global Traffic Manager 11.5.8 F5 BIG IP Global Traffic Manager 11.5.9 F5 BIG IP Global Traffic Manager 11.5.10 F5 BIG IP Global Traffic Manager 11.6.0 F5 BIG IP Global Traffic Manager 11.6.1 F5 BIG IP Global Traffic Manager 11.6.2 F5 BIG IP Global Traffic Manager 11.6.3 F5 BIG IP Global Traffic Manager 11.6.3.1 F5 BIG IP Global Traffic Manager 11.6.3.2 F5 BIG IP Global Traffic Manager 12.1.3.4 F5 BIG IP Global Traffic Manager 12.1.3.5 F5 BIG IP Global Traffic Manager 12.1.3.6 F5 BIG IP Global Traffic Manager 12.1.3.7 F5 BIG IP Global Traffic Manager 13.0.0 F5 BIG IP Global Traffic Manager 13.0.1 F5 BIG IP Global Traffic Manager 13.1.0 F5 BIG IP Global Traffic Manager 13.1.0.0 F5 BIG IP Global Traffic Manager 13.1.0.1 F5 BIG IP Global Traffic Manager 13.1.0.2 F5 BIG IP Global Traffic Manager 13.1.0.3 F5 BIG IP Global Traffic Manager 13.1.0.4 F5 BIG IP Global Traffic Manager 13.1.0.5 F5 BIG IP Global Traffic Manager 13.1.0.6 F5 BIG IP Global Traffic Manager 13.1.0.7 F5 BIG IP Global Traffic Manager 13.1.0.8 F5 BIG IP Global Traffic Manager 13.1.1 F5 BIG IP Global Traffic Manager 13.1.1.1 F5 BIG IP Global Traffic Manager 14.0.0 F5 BIG IP Global Traffic Manager 14.0.0.1 F5 BIG IP Global Traffic Manager 14.0.0.2 F5 BIG IP Link Controller 11.5.1 F5 BIG IP Link Controller 11.5.2 F5 BIG IP Link Controller 11.5.3 F5 BIG IP Link Controller 11.5.4 F5 BIG IP Link Controller 11.5.5 F5 BIG IP Link Controller 11.5.6 F5 BIG IP Link Controller 11.5.7 F5 BIG IP Link Controller 11.5.8 F5 BIG IP Link Controller 11.5.9 F5 BIG IP Link Controller 11.5.10 F5 BIG IP Link Controller 11.6.0 F5 BIG IP Link Controller 11.6.1 F5 BIG IP Link Controller 11.6.2 F5 BIG IP Link Controller 11.6.3 F5 BIG IP Link Controller 11.6.3.1 F5 BIG IP Link Controller 11.6.3.2 F5 BIG IP Link Controller 12.1.3.4 F5 BIG IP Link Controller 12.1.3.5 F5 BIG IP Link Controller 12.1.3.6 F5 BIG IP Link Controller 12.1.3.7 F5 BIG IP Link Controller 13.0.0 F5 BIG IP Link Controller 13.0.1 F5 BIG IP Link Controller 13.1.0 F5 BIG IP Link Controller 13.1.0.0 F5 BIG IP Link Controller 13.1.0.1 F5 BIG IP Link Controller 13.1.0.2 F5 BIG IP Link Controller 13.1.0.3 F5 BIG IP Link Controller 13.1.0.4 F5 BIG IP Link Controller 13.1.0.5 F5 BIG IP Link Controller 13.1.0.6 F5 BIG IP Link Controller 13.1.0.7 F5 BIG IP Link Controller 13.1.0.8 F5 BIG IP Link Controller 13.1.1 F5 BIG IP Link Controller 13.1.1.1 F5 BIG IP Link Controller 14.0.0 F5 BIG IP Link Controller 14.0.0.1 F5 BIG IP Link Controller 14.0.0.2 F5 BIG IP Policy Enforcement Manager 11.5.1 F5 BIG IP Policy Enforcement Manager 11.5.2 F5 BIG IP Policy Enforcement Manager 11.5.3 F5 BIG IP Policy Enforcement Manager 11.5.4 F5 BIG IP Policy Enforcement Manager 11.5.5 F5 BIG IP Policy Enforcement Manager 11.5.6 F5 BIG IP Policy Enforcement Manager 11.5.7 F5 BIG IP Policy Enforcement Manager 11.5.8 F5 BIG IP Policy Enforcement Manager 11.5.9 F5 BIG IP Policy Enforcement Manager 11.5.10 F5 BIG IP Policy Enforcement Manager 11.6.0 F5 BIG IP Policy Enforcement Manager 11.6.1 F5 BIG IP Policy Enforcement Manager 11.6.2 F5 BIG IP Policy Enforcement Manager 11.6.3 F5 BIG IP Policy Enforcement Manager 11.6.3.1 F5 BIG IP Policy Enforcement Manager 11.6.3.2 F5 BIG IP Policy Enforcement Manager 12.1.3.4 F5 BIG IP Policy Enforcement Manager 12.1.3.5 F5 BIG IP Policy Enforcement Manager 12.1.3.6 F5 BIG IP Policy Enforcement Manager 12.1.3.7 F5 BIG IP Policy Enforcement Manager 13.0.0 F5 BIG IP Policy Enforcement Manager 13.0.1 F5 BIG IP Policy Enforcement Manager 13.1.0 F5 BIG IP Policy Enforcement Manager 13.1.0.0 F5 BIG IP Policy Enforcement Manager 13.1.0.1 F5 BIG IP Policy Enforcement Manager 13.1.0.2 F5 BIG IP Policy Enforcement Manager 13.1.0.3 F5 BIG IP Policy Enforcement Manager 13.1.0.4 F5 BIG IP Policy Enforcement Manager 13.1.0.5 F5 BIG IP Policy Enforcement Manager 13.1.0.6 F5 BIG IP Policy Enforcement Manager 13.1.0.7 F5 BIG IP Policy Enforcement Manager 13.1.0.8 F5 BIG IP Policy Enforcement Manager 13.1.1 F5 BIG IP Policy Enforcement Manager 13.1.1.1 F5 BIG IP Policy Enforcement Manager 14.0.0 F5 BIG IP Policy Enforcement Manager 14.0.0.1 F5 BIG IP Policy Enforcement Manager 14.0.0.2 F5 BIG IP Webaccelerator 11.5.1 F5 BIG IP Webaccelerator 11.5.2 F5 BIG IP Webaccelerator 11.5.3 F5 BIG IP Webaccelerator 11.5.4 F5 BIG IP Webaccelerator 11.5.5 F5 BIG IP Webaccelerator 11.5.6 F5 BIG IP Webaccelerator 11.5.7 F5 BIG IP Webaccelerator 11.5.8 F5 BIG IP Webaccelerator 11.5.9 F5 BIG IP Webaccelerator 11.5.10 F5 BIG IP Webaccelerator 11.6.0 F5 BIG IP Webaccelerator 11.6.1 F5 BIG IP Webaccelerator 11.6.2 F5 BIG IP Webaccelerator 11.6.3 F5 BIG IP Webaccelerator 11.6.3.1 F5 BIG IP Webaccelerator 11.6.3.2 F5 BIG IP Webaccelerator 12.1.3.4 F5 BIG IP Webaccelerator 12.1.3.5 F5 BIG IP Webaccelerator 12.1.3.6 F5 BIG IP Webaccelerator 12.1.3.7 F5 BIG IP Webaccelerator 13.0.0 F5 BIG IP Webaccelerator 13.0.1 F5 BIG IP Webaccelerator 13.1.0 F5 BIG IP Webaccelerator 13.1.0.0 F5 BIG IP Webaccelerator 13.1.0.1 F5 BIG IP Webaccelerator 13.1.0.2 F5 BIG IP Webaccelerator 13.1.0.3 F5 BIG IP Webaccelerator 13.1.0.4 F5 BIG IP Webaccelerator 13.1.0.5 F5 BIG IP Webaccelerator 13.1.0.6 F5 BIG IP Webaccelerator 13.1.0.7 F5 BIG IP Webaccelerator 13.1.0.8 F5 BIG IP Webaccelerator 13.1.1 F5 BIG IP Webaccelerator 13.1.1.1 F5 BIG IP Webaccelerator 14.0.0 F5 BIG IP Webaccelerator 14.0.0.1 F5 BIG IP Webaccelerator 14.0.0.2	499

Common Weakness Enumeration (CWE)

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Nessus

NASL family	F5 Networks Local Security Checks
NASL id	F5_BIGIP_SOL91026261.NASL
description	Multipath TCP (MPTCP) does not protect against multiple zero length DATA_FINs in the reassembly queue, which can lead to an infinite loop in some circumstances. (CVE-2019-6594) Impact The BIG-IP system temporarily fails to process traffic as it recovers from a Traffic Management Microkernel (TMM) restart, and devices configured in a device group may fail over.
last seen	2020-03-17
modified	2019-02-26
plugin id	122435
published	2019-02-26
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/122435
title	F5 Networks BIG-IP : BIG-IP TMM vulnerability (K91026261)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from F5 Networks BIG-IP Solution K91026261. # # The text description of this plugin is (C) F5 Networks. # include("compat.inc"); if (description) { script_id(122435); script_version("1.5"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/03/09"); script_cve_id("CVE-2019-6594"); script_name(english:"F5 Networks BIG-IP : BIG-IP TMM vulnerability (K91026261)"); script_summary(english:"Checks the BIG-IP version."); script_set_attribute( attribute:"synopsis", value:"The remote device is missing a vendor-supplied security patch." ); script_set_attribute( attribute:"description", value: "Multipath TCP (MPTCP) does not protect against multiple zero length DATA_FINs in the reassembly queue, which can lead to an infinite loop in some circumstances. (CVE-2019-6594) Impact The BIG-IP system temporarily fails to process traffic as it recovers from a Traffic Management Microkernel (TMM) restart, and devices configured in a device group may fail over." ); script_set_attribute( attribute:"see_also", value:"https://support.f5.com/csp/article/K91026261" ); script_set_attribute( attribute:"solution", value: "Upgrade to one of the non-vulnerable versions listed in the F5 Solution K91026261." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_access_policy_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_advanced_firewall_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_acceleration_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_security_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_visibility_and_reporting"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_global_traffic_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_link_controller"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_local_traffic_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_policy_enforcement_manager"); script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_webaccelerator"); script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip"); script_set_attribute(attribute:"vuln_publication_date", value:"2019/02/26"); script_set_attribute(attribute:"patch_publication_date", value:"2019/02/25"); script_set_attribute(attribute:"plugin_publication_date", value:"2019/02/26"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"F5 Networks Local Security Checks"); script_dependencies("f5_bigip_detect.nbin"); script_require_keys("Host/local_checks_enabled", "Host/BIG-IP/hotfix", "Host/BIG-IP/modules", "Host/BIG-IP/version"); exit(0); } include("f5_func.inc"); if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); version = get_kb_item("Host/BIG-IP/version"); if ( ! version ) audit(AUDIT_OS_NOT, "F5 Networks BIG-IP"); if ( isnull(get_kb_item("Host/BIG-IP/hotfix")) ) audit(AUDIT_KB_MISSING, "Host/BIG-IP/hotfix"); if ( ! get_kb_item("Host/BIG-IP/modules") ) audit(AUDIT_KB_MISSING, "Host/BIG-IP/modules"); sol = "K91026261"; vmatrix = make_array(); # AFM vmatrix["AFM"] = make_array(); vmatrix["AFM"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["AFM"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # AM vmatrix["AM"] = make_array(); vmatrix["AM"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["AM"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # APM vmatrix["APM"] = make_array(); vmatrix["APM"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["APM"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # ASM vmatrix["ASM"] = make_array(); vmatrix["ASM"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["ASM"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # AVR vmatrix["AVR"] = make_array(); vmatrix["AVR"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["AVR"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # GTM vmatrix["GTM"] = make_array(); vmatrix["GTM"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["GTM"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # LC vmatrix["LC"] = make_array(); vmatrix["LC"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["LC"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # LTM vmatrix["LTM"] = make_array(); vmatrix["LTM"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["LTM"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # PEM vmatrix["PEM"] = make_array(); vmatrix["PEM"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["PEM"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); # WAM vmatrix["WAM"] = make_array(); vmatrix["WAM"]["affected" ] = make_list("14.0.0-14.0.0.2","13.0.0HF1-13.1.1.1","12.1.3.4-12.1.3.7","11.5.1-11.6.3"); vmatrix["WAM"]["unaffected"] = make_list("14.1.0","14.0.0.3","13.1.1.2","12.1.4","11.6.3.3"); if (bigip_is_affected(vmatrix:vmatrix, sol:sol)) { if (report_verbosity > 0) security_warning(port:0, extra:bigip_report_get()); else security_warning(0); exit(0); } else { tested = bigip_get_tested_modules(); audit_extra = "For BIG-IP module(s) " + tested + ","; if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version); else audit(AUDIT_HOST_NOT, "running any of the affected modules"); }

References

https://support.f5.com/csp/article/K91026261