VYPR
Unrated severityNVD Advisory· Published Apr 30, 2020· Updated Aug 4, 2024

CVE-2020-5885

CVE-2020-5885

Description

On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1, BIG-IP systems set up for connection mirroring in a high availability (HA) pair transfer sensitive cryptographic objects over an insecure communications channel. This is a control plane issue which is exposed only on the network used for connection mirroring.

Affected products

2
  • F5/BIG-IPdescription
  • F5, Inc./Big IPllm-fuzzy
    Range: >=12.1.0 <=15.1.0.1 (multiple ranges)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.