CVE-2020-5947

Name of the Vulnerable Software and Affected Versions BIG-IP versions 15.1.0 through 15.1.1 BIG-IP versions 16.0.0 through 16.0.0.1

Description Attackers may be able to obtain TCP sequence numbers from the BIG-IP system that can be reused in future connections with the same source and destination port and IP numbers. The affected platforms include BIG-IP 2000 series, BIG-IP 4000 series, BIG-IP i2000 series, BIG-IP i4000 series, and BIG-IP Virtual Edition.

Recommendations For versions 15.1.0 through 15.1.1, consider restricting access to the affected BIG-IP platforms to minimize the risk of exploitation. For versions 16.0.0 through 16.0.0.1, consider restricting access to the affected BIG-IP platforms to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.