VYPR
Unrated severityNVD Advisory· Published Apr 30, 2020· Updated Aug 4, 2024

CVE-2020-5886

CVE-2020-5886

Description

On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1, BIG-IP systems setup for connection mirroring in a High Availability (HA) pair transfers sensitive cryptographic objects over an insecure communications channel. This is a control plane issue which is exposed only on the network used for connection mirroring.

Affected products

2
  • F5/BIG-IPdescription
  • F5, Inc./Big IPllm-fuzzy
    Range: >=12.1.0 <=12.1.5.1, >=13.1.0 <=13.1.3.3, >=14.1.0 <=14.1.2.3, >=15.0.0 <=15.1.0.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.