F5 Networks BIG-IP : BIG-IP APM logging disclosure vulnerability (K45432295)
Medium Nessus Plugin ID 118609
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionUnder rare conditions, the BIG-IP APM system appends log details when responding to client requests. Details in the log file can vary;
customers running debug mode logging with BIG-IP APM are at highest risk. (CVE-2017-6139)
A vulnerable BIG-IP APM system may append sensitivelogging information when responding to client requests.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K45432295.