VYPR
Unrated severityNVD Advisory· Published Jul 1, 2020· Updated Aug 4, 2024

CVE-2020-5906

CVE-2020-5906

Description

In versions 13.1.0-13.1.3.3, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, the BIG-IP system does not properly enforce the access controls for the scp.blacklist files. This allows Admin and Resource Admin users with Secure Copy (SCP) protocol access to read and overwrite blacklisted files via SCP.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • BIG-IP/BIG-IP systemdescription
  • F5, Inc./Big IPllm-fuzzy
    Range: >=11.6.1 <=11.6.5.2, >=12.1.0 <=12.1.5.2, >=13.1.0 <=13.1.3.3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.