CVE-2019-6663 Information

Description

The BIG-IP 15.0.0-15.0.1 14.0.0-14.1.2.2 13.1.0-13.1.3.1 12.1.0-12.1.5 and 11.5.1-11.6.5.1 BIG-IQ 7.0.0 6.0.0-6.1.0 and 5.2.0-5.4.0 iWorkflow 2.3.0 and Enterprise Manager 3.1.1 configuration utility is vulnerable to Anti DNS Pinning (DNS Rebinding) attack.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Reference

https://support.f5.com/csp/article/K76052144

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

HIGH

Base Score

NONE

Base Severity

5.5