6.1
CVSSv2

CVE-2015-6546

Published: 06/11/2015 Updated: 06/06/2019
CVSS v2 Base Score: 6.1 | Impact Score: 6.9 | Exploitability Score: 6.5
VMScore: 543
Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Summary

The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM, Link Controller, and LTM 11.0.0 prior to 11.6.0, BIG-IP AAM 11.4.0 prior to 11.6.0, BIG-IP AFM and PEM 11.3.0 prior to 11.6.0, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.0.0 up to and including 11.3.0, BIG-IP PSM 11.0.0 up to and including 11.4.1 allows remote malicious users to cause a denial of service via "malicious traffic."

Affected Products

Vendor Product Versions
F5Big-ip Access Policy Manager11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Advanced Firewall Manager11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Analytics11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Application Acceleration Manager11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Application Security Manager11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Edge Gateway11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0
F5Big-ip Global Traffic Manager11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Link Controller11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Local Traffic Manager11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Policy Enforcement Manager11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Protocol Security Module11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1
F5Big-ip Wan Optimization Manager11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0
F5Big-ip Webaccelerator11.0.0, 11.1.0, 11.2.0, 11.2.1, 11.3.0