CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-6648

On version 1.9.0, If DEBUG logging is enable, F5 Container Ingress Service (CIS) for Kubernetes and Red Hat OpenShift (k8s-bigip-ctlr) log files may contain BIG-IP secrets such as SSL Private Keys and Private key Passphrases as provided as inputs by an AS3 Declaration.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.1%

CVSS Severity

CVSS v3 Score 4.4

CVSS v2 Score 1.9

References

https://support.f5.com/csp/article/K74327432
https://support.f5.com/csp/article/K74327432?utm_source=f5support&amp%3Butm_medium=RSS
https://support.f5.com/csp/article/K74327432
https://support.f5.com/csp/article/K74327432?utm_source=f5support&amp%3Butm_medium=RSS

Products affected by CVE-2019-6648

F5 » Container Ingress Service » Version: 1.9.0

cpe:2.3:a:f5:container_ingress_service:1.9.0
Redhat » Openshift » Version: N/A

cpe:2.3:a:redhat:openshift:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-6648

Products

Pricing

Contact Us