6.1

CVE-2015-6546

The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM, Link Controller, and LTM 11.0.0 before 11.6.0, BIG-IP AAM 11.4.0 before 11.6.0, BIG-IP AFM and PEM 11.3.0 before 11.6.0, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.0.0 through 11.3.0, BIG-IP PSM 11.0.0 through 11.4.1 allows remote attackers to cause a denial of service via "malicious traffic."

Data is provided by the National Vulnerability Database (NVD)
F5Big-ip Global Traffic Manager Version11.0.0
F5Big-ip Global Traffic Manager Version11.1.0
F5Big-ip Global Traffic Manager Version11.2.0
F5Big-ip Global Traffic Manager Version11.2.1
F5Big-ip Global Traffic Manager Version11.3.0
F5Big-ip Global Traffic Manager Version11.4.0
F5Big-ip Global Traffic Manager Version11.4.1
F5Big-ip Global Traffic Manager Version11.5.0
F5Big-ip Global Traffic Manager Version11.5.1
F5Big-ip Global Traffic Manager Version11.5.2
F5Big-ip Global Traffic Manager Version11.5.3
F5Big-ip Access Policy Manager Version11.0.0
F5Big-ip Access Policy Manager Version11.1.0
F5Big-ip Access Policy Manager Version11.2.0
F5Big-ip Access Policy Manager Version11.2.1
F5Big-ip Access Policy Manager Version11.3.0
F5Big-ip Access Policy Manager Version11.4.0
F5Big-ip Access Policy Manager Version11.4.1
F5Big-ip Access Policy Manager Version11.5.0
F5Big-ip Access Policy Manager Version11.5.1
F5Big-ip Access Policy Manager Version11.5.2
F5Big-ip Access Policy Manager Version11.5.3
F5Big-ip Webaccelerator Version11.0.0
F5Big-ip Webaccelerator Version11.1.0
F5Big-ip Webaccelerator Version11.2.0
F5Big-ip Webaccelerator Version11.2.1
F5Big-ip Webaccelerator Version11.3.0
F5Big-ip Edge Gateway Version11.0.0
F5Big-ip Edge Gateway Version11.1.0
F5Big-ip Edge Gateway Version11.2.0
F5Big-ip Edge Gateway Version11.2.1
F5Big-ip Edge Gateway Version11.3.0
F5Big-ip Link Controller Version11.0.0
F5Big-ip Link Controller Version11.1.0
F5Big-ip Link Controller Version11.2.0
F5Big-ip Link Controller Version11.2.1
F5Big-ip Link Controller Version11.3.0
F5Big-ip Link Controller Version11.4.0
F5Big-ip Link Controller Version11.4.1
F5Big-ip Link Controller Version11.5.0
F5Big-ip Link Controller Version11.5.1
F5Big-ip Link Controller Version11.5.2
F5Big-ip Link Controller Version11.5.3
F5Big-ip Analytics Version11.0.0
F5Big-ip Analytics Version11.1.0
F5Big-ip Analytics Version11.2.0
F5Big-ip Analytics Version11.2.1
F5Big-ip Analytics Version11.3.0
F5Big-ip Analytics Version11.4.0
F5Big-ip Analytics Version11.4.1
F5Big-ip Analytics Version11.5.0
F5Big-ip Analytics Version11.5.1
F5Big-ip Analytics Version11.5.2
F5Big-ip Analytics Version11.5.3
F5Big-ip Local Traffic Manager Version11.5.0
F5Big-ip Local Traffic Manager Version11.5.1
F5Big-ip Local Traffic Manager Version11.5.2
F5Big-ip Local Traffic Manager Version11.5.3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.32% 0.545
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.1 6.5 6.9
AV:A/AC:L/Au:N/C:N/I:N/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.