PT-2020-18760 · F5 · F5 Big-Ip

Published

2020-02-06

Updated

2021-07-21

CVE-2020-5856

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 14.1.0 through 14.1.2.2 F5 BIG-IP versions 15.0.0 through 15.0.1.1

Description The issue occurs when specifically crafted traffic is processed using the default 'xnet' driver on Virtual Edition instances hosted in Amazon Web Services (AWS), which may cause a TMM restart.

Recommendations For F5 BIG-IP versions 14.1.0 through 14.1.2.2, consider disabling the use of the default 'xnet' driver as a temporary workaround until a patch is available. For F5 BIG-IP versions 15.0.0 through 15.0.1.1, consider disabling the use of the default 'xnet' driver as a temporary workaround until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-5856

Affected Products

F5 Big-Ip

PT-2020-18760 · F5 · F5 Big-Ip

CVE-2020-5856

Related Identifiers

Affected Products

References · 4