CVE-2019-11478 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
canonical	CNA	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Base Score

CVSS 3.x

EPSS Score

Percentile: 96%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	𝑥 < 4.4.182
linux	linux_kernel	4.5 ≤ 𝑥 < 4.9.182
linux	linux_kernel	4.10 ≤ 𝑥 < 4.14.127
linux	linux_kernel	4.15 ≤ 𝑥 < 4.19.52
linux	linux_kernel	4.20 ≤ 𝑥 < 5.1.11
f5	big-ip_advanced_firewall_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_advanced_firewall_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_advanced_firewall_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_advanced_firewall_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_advanced_firewall_manager	15.0.0
f5	big-ip_access_policy_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_access_policy_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_access_policy_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_access_policy_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_access_policy_manager	15.0.0
f5	big-ip_application_acceleration_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_application_acceleration_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_application_acceleration_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_application_acceleration_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_application_acceleration_manager	15.0.0
f5	big-ip_link_controller	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_link_controller	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_link_controller	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_link_controller	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_link_controller	15.0.0
f5	big-ip_policy_enforcement_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_policy_enforcement_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_policy_enforcement_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_policy_enforcement_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_policy_enforcement_manager	15.0.0
f5	big-ip_webaccelerator	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_webaccelerator	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_webaccelerator	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_webaccelerator	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_webaccelerator	15.0.0
f5	big-ip_application_security_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_application_security_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_application_security_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_application_security_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_application_security_manager	15.0.0
f5	big-ip_local_traffic_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_local_traffic_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_local_traffic_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_local_traffic_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_local_traffic_manager	15.0.0
f5	big-ip_fraud_protection_service	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_fraud_protection_service	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_fraud_protection_service	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_fraud_protection_service	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_fraud_protection_service	15.0.0
f5	big-ip_global_traffic_manager	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_global_traffic_manager	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_global_traffic_manager	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_global_traffic_manager	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_global_traffic_manager	15.0.0
f5	big-ip_analytics	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_analytics	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_analytics	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_analytics	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_analytics	15.0.0
f5	big-ip_edge_gateway	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_edge_gateway	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_edge_gateway	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_edge_gateway	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_edge_gateway	15.0.0
f5	big-ip_domain_name_system	11.5.2 ≤ 𝑥 ≤ 11.6.4
f5	big-ip_domain_name_system	12.1.0 ≤ 𝑥 ≤ 12.1.4
f5	big-ip_domain_name_system	13.1.0 ≤ 𝑥 ≤ 13.1.1
f5	big-ip_domain_name_system	14.0.0 ≤ 𝑥 ≤ 14.1.0
f5	big-ip_domain_name_system	15.0.0
canonical	ubuntu_linux	12.04
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	18.04
canonical	ubuntu_linux	18.10
canonical	ubuntu_linux	19.04
redhat	enterprise_linux_atomic_host	-
redhat	enterprise_linux	5.0
redhat	enterprise_linux	6.0
redhat	enterprise_linux	7.0
redhat	enterprise_linux	8.0
redhat	enterprise_linux_aus	6.5
redhat	enterprise_linux_aus	6.6
redhat	enterprise_linux_eus	7.4
redhat	enterprise_linux_eus	7.5
redhat	enterprise_mrg	2.0
ivanti	connect_secure	-
pulsesecure	pulse_policy_secure	-
pulsesecure	pulse_secure_virtual_application_delivery_controller	-
f5	traffix_signaling_delivery_controller	5.0.0 ≤ 𝑥 ≤ 5.1.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.106-3 fixed
bookworm (security)	6.1.112-1 fixed
bullseye	5.10.223-1 fixed
bullseye (security)	5.10.226-1 fixed
sid	6.11.5-1 fixed
trixie	6.11.5-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

linux

bionic	Fixed 4.15.0-52.56 released
cosmic	Fixed 4.18.0-22.23 released
disco	Fixed 5.0.0-17.18 released
trusty	Fixed 3.13.0-171.222 released
xenial	Fixed 4.4.0-151.178 released

linux-aws

bionic	Fixed 4.15.0-1041.43 released
cosmic	Fixed 4.18.0-1018.20 released
disco	Fixed 5.0.0-1008.8 released
trusty	Fixed 4.4.0-1046.50 released
xenial	Fixed 4.4.0-1085.96 released

linux-aws-hwe

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	Fixed 4.15.0-1041.43~16.04.1 released

linux-azure

bionic	Fixed 4.18.0-1020.20~18.04.1 released
cosmic	Fixed 4.18.0-1020.20 released
disco	Fixed 5.0.0-1008.8 released
trusty	Fixed 4.15.0-1047.51~14.04.1 released
xenial	Fixed 4.15.0-1047.51 released

linux-azure-edge

bionic	Fixed 4.18.0-1020.20~18.04.1 released
cosmic	dne
disco	dne
trusty	dne
xenial	Fixed 4.15.0-1047.51 released

linux-euclid

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-flo

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-gcp

bionic	Fixed 4.15.0-1034.36 released
cosmic	Fixed 4.18.0-1013.14 released
disco	Fixed 5.0.0-1008.8 released
trusty	dne
xenial	Fixed 4.15.0-1034.36~16.04.1 released

linux-gcp-edge

bionic	Fixed 4.18.0-1013.14~18.04.1 released
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-gke

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-gke-4.15

bionic	Fixed 4.15.0-1034.36 released
disco	dne
trusty	dne
xenial	dne

linux-gke-5.0

bionic	not-affected
disco	dne
trusty	dne
xenial	dne

linux-goldfish

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-grouper

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-hwe

bionic	Fixed 4.18.0-22.23~18.04.1 released
cosmic	dne
disco	dne
trusty	dne
xenial	Fixed 4.15.0-52.56~16.04.1 released

linux-hwe-edge

bionic	Fixed 5.0.0-17.18~18.04.1 released
cosmic	dne
disco	dne
trusty	dne
xenial	Fixed 4.15.0-52.56~16.04.1 released

linux-kvm

bionic	Fixed 4.15.0-1036.36 released
cosmic	Fixed 4.18.0-1014.14 released
disco	Fixed 5.0.0-1008.8 released
trusty	dne
xenial	Fixed 4.4.0-1048.55 released

linux-lts-trusty

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-lts-utopic

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-lts-vivid

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-lts-wily

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-lts-xenial

bionic	dne
cosmic	dne
disco	dne
trusty	Fixed 4.4.0-151.178~14.04.1 released
xenial	dne

linux-maguro

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-mako

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	ignored

linux-manta

bionic	dne
cosmic	dne
disco	dne
trusty	dne
xenial	dne

linux-oem

bionic	Fixed 4.15.0-1043.48 released
cosmic	Fixed 4.15.0-1043.48 released
disco	Fixed 4.15.0-1043.48 released
trusty	dne
xenial	ignored

linux-oracle

bionic	Fixed 4.15.0-1015.17 released
cosmic	Fixed 4.15.0-1015.17 released
disco	Fixed 4.15.0-1015.17 released
trusty	dne
xenial	Fixed 4.15.0-1015.17~16.04.1 released