CVE-2020-5929

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 11.6.1 through 11.6.2 F5 BIG-IP versions 12.1.0 through 12.1.2 HF1 F5 BIG-IP versions 13.0.0 through 13.0.0 HF2

Description The issue affects F5 BIG-IP platforms with Cavium Nitrox SSL hardware acceleration cards, where a Virtual Server is configured with a Client SSL profile and uses Anonymous (ADH) or Ephemeral (DHE) Diffie-Hellman key exchange. If the Single DH use option is not enabled, the system may be vulnerable to crafted SSL/TLS Handshakes. This could result in a Pre-Master Secret (PMS) starting with a 0 byte, potentially leading to the recovery of plaintext messages. The BIG-IP TLS/SSL ADH/DHE implementation sends different error messages, acting as an oracle, and precise timing measurements may also expose this vulnerability.

Recommendations For versions 11.6.1 through 11.6.2, enable the Single DH use option in the Client SSL profile options list to mitigate the issue. For versions 12.1.0 through 12.1.2 HF1, enable the Single DH use option in the Client SSL profile options list to mitigate the issue. For versions 13.0.0 through 13.0.0 HF2, enable the Single DH use option in the Client SSL profile options list to mitigate the issue.