CVE-2019-11477 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
canonical	CNA	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 98%

Vendor	Product	Version
linux	linux_kernel	2.6.29 ≤ 𝑥 < 3.16.69
linux	linux_kernel	3.17 ≤ 𝑥 < 4.4.182
linux	linux_kernel	4.5 ≤ 𝑥 < 4.9.182
linux	linux_kernel	4.10 ≤ 𝑥 < 4.14.127
linux	linux_kernel	4.15 ≤ 𝑥 < 4.19.52
linux	linux_kernel	4.20 ≤ 𝑥 < 5.1.11
f5	big-ip_advanced_firewall_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_advanced_firewall_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_advanced_firewall_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_advanced_firewall_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_advanced_firewall_manager	15.0.0
f5	big-ip_access_policy_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_access_policy_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_access_policy_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_access_policy_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_access_policy_manager	15.0.0
f5	big-ip_application_acceleration_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_application_acceleration_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_application_acceleration_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_application_acceleration_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_application_acceleration_manager	15.0.0
f5	big-ip_link_controller	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_link_controller	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_link_controller	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_link_controller	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_link_controller	15.0.0
f5	big-ip_policy_enforcement_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_policy_enforcement_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_policy_enforcement_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_policy_enforcement_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_policy_enforcement_manager	15.0.0
f5	big-ip_webaccelerator	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_webaccelerator	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_webaccelerator	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_webaccelerator	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_webaccelerator	15.0.0
f5	big-ip_application_security_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_application_security_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_application_security_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_application_security_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_application_security_manager	15.0.0
f5	big-ip_local_traffic_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_local_traffic_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_local_traffic_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_local_traffic_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_local_traffic_manager	15.0.0
f5	big-ip_fraud_protection_service	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_fraud_protection_service	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_fraud_protection_service	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_fraud_protection_service	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_fraud_protection_service	15.0.0
f5	big-ip_global_traffic_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_global_traffic_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_global_traffic_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_global_traffic_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_global_traffic_manager	15.0.0
f5	big-ip_analytics	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_analytics	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_analytics	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_analytics	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_analytics	15.0.0
f5	big-ip_edge_gateway	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_edge_gateway	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_edge_gateway	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_edge_gateway	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_edge_gateway	15.0.0
f5	big-ip_domain_name_system	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_domain_name_system	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_domain_name_system	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_domain_name_system	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_domain_name_system	15.0.0
canonical	ubuntu_linux	12.04
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	18.04
canonical	ubuntu_linux	18.10
canonical	ubuntu_linux	19.04
redhat	enterprise_linux_atomic_host	-
redhat	enterprise_linux	5.0
redhat	enterprise_linux	6.0
redhat	enterprise_linux	7.0
redhat	enterprise_linux	8.0
redhat	enterprise_linux_aus	6.5
redhat	enterprise_linux_aus	6.6
redhat	enterprise_linux_eus	7.4
redhat	enterprise_linux_eus	7.5
redhat	enterprise_mrg	2.0
ivanti	connect_secure	-
pulsesecure	pulse_policy_secure	-
pulsesecure	pulse_secure_virtual_application_delivery_controller	-
f5	traffix_signaling_delivery_controller	5.0.0 ≤ 𝑥 ≤ 5.1.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bullseye	5.10.223-1 fixed
bullseye (security)	5.10.226-1 fixed
bookworm	6.1.106-3 fixed
bookworm (security)	6.1.112-1 fixed
trixie	6.11.5-1 fixed
sid	6.11.6-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

linux

disco	Fixed 5.0.0-17.18 released
cosmic	Fixed 4.18.0-22.23 released
bionic	Fixed 4.15.0-52.56 released
xenial	Fixed 4.4.0-151.178 released
trusty	Fixed 3.13.0-171.222 released

linux-aws

disco	Fixed 5.0.0-1008.8 released
cosmic	Fixed 4.18.0-1018.20 released
bionic	Fixed 4.15.0-1041.43 released
xenial	Fixed 4.4.0-1085.96 released
trusty	Fixed 4.4.0-1046.50 released

linux-aws-hwe

disco	dne
cosmic	dne
bionic	dne
xenial	Fixed 4.15.0-1041.43~16.04.1 released
trusty	dne

linux-azure

disco	Fixed 5.0.0-1008.8 released
cosmic	Fixed 4.18.0-1020.20 released
bionic	Fixed 4.18.0-1020.20~18.04.1 released
xenial	Fixed 4.15.0-1047.51 released
trusty	Fixed 4.15.0-1047.51~14.04.1 released

linux-azure-edge

disco	dne
cosmic	dne
bionic	Fixed 4.18.0-1020.20~18.04.1 released
xenial	Fixed 4.15.0-1047.51 released
trusty	dne

linux-euclid

disco	dne
cosmic	dne
bionic	dne
xenial	ignored
trusty	dne

linux-flo

disco	dne
cosmic	dne
bionic	dne
xenial	ignored
trusty	dne

linux-gcp

disco	Fixed 5.0.0-1008.8 released
cosmic	Fixed 4.18.0-1013.14 released
bionic	Fixed 4.15.0-1034.36 released
xenial	Fixed 4.15.0-1034.36~16.04.1 released
trusty	dne

linux-gcp-edge

disco	dne
cosmic	dne
bionic	Fixed 4.18.0-1013.14~18.04.1 released
xenial	dne
trusty	dne

linux-gke

disco	dne
cosmic	dne
bionic	dne
xenial	ignored
trusty	dne

linux-gke-4.15

disco	dne
bionic	Fixed 4.15.0-1034.36 released
xenial	dne
trusty	dne

linux-gke-5.0

disco	dne
bionic	not-affected
xenial	dne
trusty	dne

linux-goldfish

disco	dne
cosmic	dne
bionic	dne
xenial	ignored
trusty	dne

linux-grouper

disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	dne

linux-hwe

disco	dne
cosmic	dne
bionic	Fixed 4.18.0-22.23~18.04.1 released
xenial	Fixed 4.15.0-52.56~16.04.1 released
trusty	dne

linux-hwe-edge

disco	dne
cosmic	dne
bionic	Fixed 5.0.0-17.18~18.04.1 released
xenial	Fixed 4.15.0-52.56~16.04.1 released
trusty	dne

linux-kvm

disco	Fixed 5.0.0-1008.8 released
cosmic	Fixed 4.18.0-1014.14 released
bionic	Fixed 4.15.0-1036.36 released
xenial	Fixed 4.4.0-1048.55 released
trusty	dne

linux-lts-trusty

disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	dne

linux-lts-utopic

disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	dne

linux-lts-vivid

disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	dne

linux-lts-wily

disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	dne

linux-lts-xenial

disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	Fixed 4.4.0-151.178~14.04.1 released

linux-maguro

disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	dne

linux-mako

disco	dne
cosmic	dne
bionic	dne
xenial	ignored
trusty	dne

linux-manta

disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	dne

linux-oem

disco	Fixed 4.15.0-1043.48 released
cosmic	Fixed 4.15.0-1043.48 released
bionic	Fixed 4.15.0-1043.48 released
xenial	ignored
trusty	dne

linux-oracle

disco	Fixed 4.15.0-1015.17 released
cosmic	Fixed 4.15.0-1015.17 released
bionic	Fixed 4.15.0-1015.17 released
xenial	Fixed 4.15.0-1015.17~16.04.1 released
trusty	dne