CVE-2019-6640
published 2019-07-03CVE-2019-6640: On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.1-11.5.8, SNMP exposes sensitive configuration objects…
medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.1-11.5.8, SNMP exposes sensitive configuration objects over insecure transmission channels. This issue is exposed when a passphrase is inserted into various profile types and accessed using SNMPv2.
Affected
97 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f5 | big-ip | — | — |
| f5 | big-ip | — | — |
| f5 | big-ip | — | — |
| f5 | big-ip | — | — |
| f5 | big-ip | — | — |
| f5 | big-ip | — | — |
| f5 | big-ip_aam | — | — |
| f5 | big-ip_access_policy_manager | >= 11.5.1 < 11.5.9 | 11.5.9 |
| f5 | big-ip_access_policy_manager | >= 11.6.1 < 11.6.4 | 11.6.4 |
| f5 | big-ip_access_policy_manager | >= 12.1.0 < 12.1.4.1 | 12.1.4.1 |
| f5 | big-ip_access_policy_manager | >= 13.0.0 < 13.1.1.5 | 13.1.1.5 |
| f5 | big-ip_access_policy_manager | >= 14.0.0 < 14.0.0.5 | 14.0.0.5 |
| f5 | big-ip_access_policy_manager | >= 14.1.0 < 14.1.0.6 | 14.1.0.6 |
| f5 | big-ip_advanced_firewall_manager | >= 11.5.1 < 11.5.9 | 11.5.9 |
| f5 | big-ip_advanced_firewall_manager | >= 11.6.1 < 11.6.4 | 11.6.4 |
| f5 | big-ip_advanced_firewall_manager | >= 12.1.0 < 12.1.4.1 | 12.1.4.1 |
| f5 | big-ip_advanced_firewall_manager | >= 13.0.0 < 13.1.1.5 | 13.1.1.5 |
| f5 | big-ip_advanced_firewall_manager | >= 14.0.0 < 14.0.0.5 | 14.0.0.5 |
| f5 | big-ip_advanced_firewall_manager | >= 14.1.0 < 14.1.0.6 | 14.1.0.6 |
| f5 | big-ip_afm | — | — |
| f5 | big-ip_analytics | — | — |
| f5 | big-ip_analytics | >= 11.5.1 < 11.5.9 | 11.5.9 |
| f5 | big-ip_analytics | >= 11.6.1 < 11.6.4 | 11.6.4 |
| f5 | big-ip_analytics | >= 12.1.0 < 12.1.4.1 | 12.1.4.1 |
| f5 | big-ip_analytics | >= 13.0.0 < 13.1.1.5 | 13.1.1.5 |