vulnerability

F5 Networks: K45644893 (CVE-2019-6654): Martian address filtering vulnerability CVE-2019-6654

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:A/AC:L/Au:N/C:N/I:P/A:N)	Sep 24, 2019	Sep 25, 2019	Mar 3, 2020

Severity

CVSS

(AV:A/AC:L/Au:N/C:N/I:P/A:N)

Published

Sep 24, 2019

Added

Sep 25, 2019

Modified

Mar 3, 2020

Description

On versions 14.0.0-14.1.2, 13.0.0-13.1.3, 12.1.0-12.1.5, and 11.5.1-11.6.5, the BIG-IP system fails to perform Martian Address Filtering (As defined in RFC 1812 section 5.3.7) on the control plane (management interface). This may allow attackers on an adjacent system to force BIG-IP into processing packets with spoofed source addresses.

Solution

f5-big-ip-upgrade-latest

References

URL-https://support.f5.com/csp/article/K45644893
NVD-CVE-2019-6654

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today