PT-2020-18780 · F5 · Big-Ip Asm+1

Published

2020-04-30

Updated

2021-07-21

CVE-2020-5879

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions F5 BIG-IP ASM versions 11.6.1 through 11.6.5.1

Description The issue occurs when the BIG-IP system sends data plane traffic to back-end servers unencrypted, even when a Server SSL profile is applied, under certain configurations.

Recommendations For versions 11.6.1 through 11.6.5.1, ensure that the Server SSL profile is correctly configured to encrypt data plane traffic to back-end servers. As a temporary workaround, consider reviewing and adjusting the BIG-IP system's configuration to enforce encryption for all data plane traffic.

Fix

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-319

Related Identifiers

CVE-2020-5879

Affected Products

Big-Ip

Big-Ip Asm

PT-2020-18780 · F5 · Big-Ip Asm+1

CVE-2020-5879

Weakness Enumeration

Related Identifiers

Affected Products

References · 4