CVE-2019-6611

Published: May 3, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

When BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2-11.5.8 are processing certain rare data sequences occurring in PPTP VPN traffic, the BIG-IP system may execute incorrect logic. The TMM may restart and produce a core file as a result of this condition. The BIG-IP system provisioned with the CGNAT module and configured with a virtual server using a PPTP profile is exposed to this vulnerability.

Vendor	Product	Versions
F5	BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator)	affected `14.0.0-14.1.0.1` affected `13.0.0-13.1.1.4` affected `12.1.0-12.1.4` affected `11.6.1-11.6.3.4` affected `11.5.2-11.5.8`

References

https://support.f5.com/csp/article/K47527163

x_refsource_CONFIRM

108187

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-6611

Description

Affected Products

References