CVE-2020-5892

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 7.1.5 through 7.1.8

Description The issue allows attackers to obtain the full session ID from process memory in the BIG-IP Edge Client components of BIG-IP APM, Edge Gateway, and FirePass legacy.

Recommendations For versions 7.1.5 through 7.1.8, consider restricting access to sensitive areas of the application that rely on session IDs to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.