VYPR
Unrated severityNVD Advisory· Published Nov 5, 2020· Updated Aug 4, 2024

CVE-2020-5943

CVE-2020-5943

Description

In versions 14.1.0-14.1.0.1 and 14.1.2.5-14.1.2.7, when a BIG-IP object is created or listed through the REST interface, the protected fields are obfuscated in the REST response, not protected via a SecureVault cryptogram as TMSH does. One example of protected fields is the GTM monitor password.

Affected products

2
  • BIG-IP/BIG-IPdescription
  • F5, Inc./Big IPllm-fuzzy
    Range: >=14.1.0, <=14.1.0.1 || >=14.1.2.5, <=14.1.2.7

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.