Vulnerabilities > CVE-2019-6624 - Unspecified vulnerability in F5 products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
f5
nessus

Summary

On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, an undisclosed traffic pattern sent to a BIG-IP UDP virtual server may lead to a denial-of-service (DoS).

Vulnerable Configurations

Part Description Count
Application
F5
653

Nessus

NASL familyF5 Networks Local Security Checks
NASL idF5_BIGIP_SOL07127032.NASL
descriptionAn undisclosed traffic pattern sent to a BIG-IP UDP virtual server may lead to a denial-of-service (DoS), if that virtual server is configured with a Protocol setting of UDP and has an associated UDP Protocol Profile with the Datagram LB option enabled. (CVE-2019-6624) Impact A remote attacker may be able to cause the Traffic Management Microkernel (TMM) to restart, resulting in a denial of service (DoS) on the vulnerable system.
last seen2020-03-17
modified2019-07-02
plugin id126395
published2019-07-02
reporterThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
sourcehttps://www.tenable.com/plugins/nessus/126395
titleF5 Networks BIG-IP : TMM vulnerability (K07127032)