Vulnetix
Try Vulnetix Request Demo
CVE-2019-6670 PUBLISHED CVSS 4.400000095367432 MEDIUM

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.1-11.6.5, vCMP hypervisors are incorrectly exposing the plaintext unit key for their vCMP guests on the filesystem.

EPSS 0.10% · 26.8th percentile

Risk Scores

CVSS v3.1
4.400000095367432
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
EPSS Score
0.10%
26.8th percentile

Affected Products

VendorProductVersions
f5big-ip_fraud_protection_service15.0.0, 11.5.1, 12.1.0
f5big-ip_global_traffic_manager15.0.0, 14.1.0, 11.5.1
f5big-ip_local_traffic_manager12.1.0, 15.0.0, 14.1.0
f5big-ip_application_acceleration_manager11.5.1, 15.0.0, 14.1.0
f5big-ip_advanced_firewall_manager13.1.0, 11.5.1, 12.1.0
f5big-ip_edge_gateway11.5.1, 12.1.0, 13.1.0
f5big-ip_domain_name_system11.5.1, 12.1.0, 13.1.0
f5big-ip_application_security_manager11.5.1, 12.1.0, 13.1.0
f5big-ip_analytics15.0.0, 14.1.0, 14.0.0
f5big-ip_link_controller11.5.1, 15.0.0, 14.1.0
f5big-ip_access_policy_manager14.1.0, 11.5.1, 12.1.0
f5big-ip_policy_enforcement_manager11.5.1, 12.1.0, 13.1.0
F5BIG-IP15.0.0-15.0.1, 11.5.1-11.6.5, 12.1.0-12.1.5
f5big-ip_webaccelerator11.5.1, 12.1.0, 13.1.0

Timeline

References

Open in Interactive Console →