CVE-2019-19150 vulnerability in F5 Networks Products
Published on December 23, 2019
On versions 15.0.0-15.0.1.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, the BIG-IP APM system logs the client-session-id when a per-session policy is attached to the virtual server with debug logging enabled.
Products Associated with CVE-2019-19150
stack.watch emails you whenever new vulnerabilities are published in F5 Networks Big Ip Access Policy Manager or F5 Networks Big Ip Apm. Just hit a watch button to start following.
Affected Versions
F5 BIG-IP APM:- Version 15.0.0-15.0.1.1 is affected.
- Version 14.1.0-14.1.2 is affected.
- Version 14.0.0-14.0.1 is affected.
- Version 13.1.0-13.1.3.1 is affected.
- Version 12.1.0-12.1.5 is affected.
- Version 11.5.2-11.6.5.1 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.