Infinite Loop Vulnerability in BIG-IP iControl REST Endpoint

Infinite Loop Vulnerability in BIG-IP iControl REST Endpoint

CVE-2019-6638 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

On BIG-IP 14.1.0-14.1.0.5 and 14.0.0-14.0.0.4, Malformed http requests made to an undisclosed iControl REST endpoint can lead to infinite loop of the restjavad process.

Learn more about our Web Application Penetration Testing UK.