F5 Big-Ip Protocol Security Manager vulnerabilities

7 known vulnerabilities affecting f5/big-ip_protocol_security_manager.

Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2019-6603HIGHCVSS 7.5≥ 11.5.1, ≤ 11.5.8≥ 11.6.1, ≤ 11.6.3+2 more2019-03-28
CVE-2019-6603 [HIGH] CVE-2019-6603: In BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3, and 13.0.0-13.0.1, malformed TCP packets sent In BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3, and 13.0.0-13.0.1, malformed TCP packets sent to a self IP address or a FastL4 virtual server may cause an interruption of service. The control plane is not exposed to this issue. This issue impacts the data plane virtual servers and self IPs.
nvd
CVE-2019-6605HIGHCVSS 7.5≥ 11.5.0, < 11.5.9≥ 11.6.0, < 11.6.4+1 more2019-03-28
CVE-2019-6605 [HIGH] CVE-2019-6605: On BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, and 12.0.x, an undisclosed sequence of packets received by a On BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, and 12.0.x, an undisclosed sequence of packets received by an SSL virtual server and processed by an associated Client SSL or Server SSL profile may cause a denial of service.
nvd
CVE-2019-6604MEDIUMCVSS 6.8≥ 11.6.0, ≤ 11.6.3≥ 12.1.0, ≤ 12.1.3+2 more2019-03-28
CVE-2019-6604 [MEDIUM] CVE-2019-6604: On BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3.6, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under On BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3.6, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under certain conditions, hardware systems with a High-Speed Bridge and using non-default Layer 2 forwarding configurations may experience a lockup of the High-Speed Bridge.
nvd
CVE-2019-6606MEDIUMCVSS 4.3≥ 11.5.1, ≤ 11.6.3.4≥ 12.1.0, ≤ 12.1.3.7+2 more2019-03-28
CVE-2019-6606 [MEDIUM] CWE-401 CVE-2019-6606: On BIG-IP 11.5.1-11.6.3.4, 12.1.0-12.1.3.7, 13.0.0-13.1.1.3, and 14.0.0-14.0.0.2, when processing ce On BIG-IP 11.5.1-11.6.3.4, 12.1.0-12.1.3.7, 13.0.0-13.1.1.3, and 14.0.0-14.0.0.2, when processing certain SNMP requests with a request-id of 0, the snmpd process may leak a small amount of memory.
nvd
CVE-2019-6608MEDIUMCVSS 5.9≥ 12.1.0, ≤ 12.1.3≥ 13.0.0, ≤ 13.1.1.1+1 more2019-03-28
CVE-2019-6608 [MEDIUM] CWE-401 CVE-2019-6608: On BIG-IP 11.5.1-11.6.3, 12.1.0-12.1.3, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under certain conditio On BIG-IP 11.5.1-11.6.3, 12.1.0-12.1.3, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under certain conditions, the snmpd daemon may leak memory on a multi-blade BIG-IP vCMP guest when processing authorized SNMP requests.
nvd
CVE-2015-4047HIGHCVSS 7.8≥ 11.0.0, ≤ 11.4.12015-05-29
CVE-2015-4047 [HIGH] CWE-476 CVE-2015-4047: racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL poin racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.
nvd
CVE-2009-4420HIGHCVSS 7.8v9.4.5v9.4.6+2 more2009-12-24
CVE-2009-4420 [HIGH] CWE-119 CVE-2009-4420: Buffer overflow in the bd daemon in F5 Networks BIG-IP Application Security Manager (ASM) 9.4.4 thro Buffer overflow in the bd daemon in F5 Networks BIG-IP Application Security Manager (ASM) 9.4.4 through 9.4.7 and 10.0.0 through 10.0.1, and Protocol Security Manager (PSM) 9.4.5 through 9.4.7 and 10.0.0 through 10.0.1, allows remote attackers to cause a denial of service (crash) via unknown vectors. NOTE: some of these details are obtained from third p
nvd