What is the severity of CVE-2019-11989?

CVE-2019-11989 is classified as a denial of service vulnerability.

How do I fix CVE-2019-11989?

To fix CVE-2019-11989, upgrade to a patched version of HPE IceWall SSO Agent, specifically version 11.0 or later.

What versions of HPE IceWall are affected by CVE-2019-11989?

CVE-2019-11989 affects version 10.0 of HPE IceWall SSO Agent for Apache.

Can CVE-2019-11989 be exploited remotely?

Yes, CVE-2019-11989 can be exploited remotely to cause a denial of service.

Which platforms are impacted by CVE-2019-11989?

The impacted platforms include RHEL 5 and 6 for Apache 2.2 and RHEL 7 for Apache 2.4.

Vulnerability/
CVE-2019-11989

high

7.1

19/7/2019

4/8/2024

CVE-2019-11989

First published: Fri Jul 19 2019(Updated: )

A security vulnerability in HPE IceWall SSO Agent Option and IceWall MFA (Agent module ) could be exploited remotely to cause a denial of service. The versions and platforms of Agent Option modules that are impacted are as follows: 10.0 for Apache 2.2 on RHEL 5 and 6, 10.0 for Apache 2.4 on RHEL 7, 10.0 for Apache 2.4 on HP-UX 11i v3, 10.0 for IIS on Windows, 11.0 for Apache 2.4 on RHEL 7, MFA Proxy 4.0 (Agent module only) for Apache 2.4 on RHEL 7.

Credit: security-alert@hpe.com

Affected Software	Affected Version	How to fix
HPE IceWall SSO Certified	=10.0
HPE HP-UX
Microsoft Windows
Red Hat Enterprise Linux	=5.0
Red Hat Enterprise Linux	=6.0
Red Hat Enterprise Linux	=7.0
HPE IceWall SSO Certified	=11.0
HP MFA Proxy	=4.0

Never miss a vulnerability like this again

Reference Links

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbmu03941en_us

Frequently Asked Questions

What is the severity of CVE-2019-11989?
CVE-2019-11989 is classified as a denial of service vulnerability.
How do I fix CVE-2019-11989?
To fix CVE-2019-11989, upgrade to a patched version of HPE IceWall SSO Agent, specifically version 11.0 or later.
What versions of HPE IceWall are affected by CVE-2019-11989?
CVE-2019-11989 affects version 10.0 of HPE IceWall SSO Agent for Apache.
Can CVE-2019-11989 be exploited remotely?
Yes, CVE-2019-11989 can be exploited remotely to cause a denial of service.
Which platforms are impacted by CVE-2019-11989?
The impacted platforms include RHEL 5 and 6 for Apache 2.2 and RHEL 7 for Apache 2.4.

agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/last-modified-date
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
vendor/hp
canonical/hpe icewall sso certified
version/hpe icewall sso certified/10.0
canonical/hpe hp-ux
vendor/microsoft
canonical/microsoft windows
vendor/redhat
canonical/red hat enterprise linux
version/red hat enterprise linux/5.0
version/red hat enterprise linux/6.0
version/red hat enterprise linux/7.0
version/hpe icewall sso certified/11.0
canonical/hp mfa proxy
version/hp mfa proxy/4.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.