CVE-2019-6632 — MEDIUM (5.5)

Q: How severe is CVE-2019-6632?

CVE-2019-6632 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-6632?

Check the references section above for vendor advisories and patch information. Affected products include: F5 Big-Ip Local Traffic Manager, F5 Big-Ip Application Acceleration Manager, F5 Big-Ip Advanced Firewall Manager, F5 Big-Ip Analytics, F5 Big-Ip Access Policy Manager.

Vulnerability Description

On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, under certain circumstances, attackers can decrypt configuration items that are encrypted because the vCMP configuration unit key is generated with insufficient randomness. The attack prerequisite is direct access to encrypted configuration and/or UCS files.

CVSS Score

5.5

MEDIUM

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
F5	Big-Ip Local Traffic Manager	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Application Acceleration Manager	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Advanced Firewall Manager	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Analytics	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Access Policy Manager	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Application Security Manager	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Domain Name System	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Edge Gateway	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Global Traffic Manager	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Link Controller	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Policy Enforcement Manager	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Webaccelerator	>= 12.1.0, < 12.1.4.1
F5	Big-Ip Fraud Protection Service	>= 12.1.0, < 12.1.4.1

Related Weaknesses (CWE)

CWE-330

References

http://www.securityfocus.com/bid/109112Third Party AdvisoryVDB Entry
https://support.f5.com/csp/article/K01413496Vendor Advisory
http://www.securityfocus.com/bid/109112Third Party AdvisoryVDB Entry
https://support.f5.com/csp/article/K01413496Vendor Advisory

FAQ

What is CVE-2019-6632?

CVE-2019-6632 is a vulnerability with a CVSS score of 5.5 (MEDIUM). On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, under certain circumstances, attackers can decrypt configuration items that are encrypted because the vCMP configuration...

How severe is CVE-2019-6632?

CVE-2019-6632 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-6632?

Check the references section above for vendor advisories and patch information. Affected products include: F5 Big-Ip Local Traffic Manager, F5 Big-Ip Application Acceleration Manager, F5 Big-Ip Advanced Firewall Manager, F5 Big-Ip Analytics, F5 Big-Ip Access Policy Manager.