Back to search
CVE-2019-6665
Published: Nov 27, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
On BIG-IP ASM 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, BIG-IQ 6.0.0 and 5.2.0-5.4.0, iWorkflow 2.3.0, and Enterprise Manager 3.1.1, an attacker with access to the device communication between the BIG-IP ASM Central Policy Builder and the BIG-IQ/Enterprise Manager/F5 iWorkflow will be able to set up the proxy the same way and intercept the traffic.
| Vendor | Product | Versions |
|---|---|---|
F5 | BIG-IP ASM | affected 15.0.0-15.0.1affected 14.1.0-14.1.2affected 14.0.0-14.0.1affected 13.1.0-13.1.3.1 |
F5 | BIG-IQ | affected 6.0.0affected 5.2.0-5.4.0 |
F5 | IWorkflow | affected 2.3.0 |
F5 | Enterprise Manager | affected 3.1.1 |
References
https://support.f5.com/csp/article/K26462555
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now