HTTP/2 Full Proxy Mode Disruption of Service Vulnerability

HTTP/2 Full Proxy Mode Disruption of Service Vulnerability

CVE-2019-6673 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

On versions 15.0.0-15.0.1 and 14.0.0-14.1.2, when the BIG-IP is configured in HTTP/2 Full Proxy mode, specifically crafted requests may cause a disruption of service provided by the Traffic Management Microkernel (TMM).

Learn more about our Web Application Penetration Testing UK.