2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2020-5881" ,
"sourceIdentifier" : "f5sirt@f5.com" ,
"published" : "2020-04-30T21:15:16.977" ,
2024-11-23 13:10:58 +00:00
"lastModified" : "2024-11-21T05:34:45.473" ,
"vulnStatus" : "Modified" ,
2024-12-08 03:06:42 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when the BIG-IP Virtual Edition (VE) is configured with VLAN groups and there are devices configured with OSPF connected to it, the Network Device Abstraction Layer (NDAL) Interfaces can lock up and in turn disrupting the communication between the mcpd and tmm processes."
} ,
{
"lang" : "es" ,
"value" : "En las versiones 15.0.0 hasta 15.1.0.1, 14.1.0 hasta 14.1.2.3 y 13.1.0 hasta 13.1.3.3, cuando BIG-IP Virtual Edition (VE) est\u00e1 configurado con grupos VLAN y existen dispositivos configurados con OSPF conectado para ello, las interfaces Network Device Abstraction Layer (NDAL) pueden bloquearse y, a la vez, interrumpir la comunicaci\u00f3n entre los procesos mcpd y tmm."
}
] ,
"metrics" : {
"cvssMetricV31" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" ,
2024-11-23 13:10:58 +00:00
"baseScore" : 7.5 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "NONE" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "NONE" ,
"integrityImpact" : "NONE" ,
2024-11-23 13:10:58 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
"exploitabilityScore" : 3.9 ,
"impactScore" : 3.6
}
] ,
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:L/Au:N/C:N/I:N/A:P" ,
2024-11-23 13:10:58 +00:00
"baseScore" : 5.0 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "NETWORK" ,
"accessComplexity" : "LOW" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "NONE" ,
"integrityImpact" : "NONE" ,
2024-11-23 13:10:58 +00:00
"availabilityImpact" : "PARTIAL"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "MEDIUM" ,
"exploitabilityScore" : 10.0 ,
"impactScore" : 2.9 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "NVD-CWE-noinfo"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "002D2E41-C4FC-45CF-8C28-D0A7D3419880"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "07FC84CA-3E12-43FB-ADBD-7B988DEF3A97"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "6A3327A9-9511-4760-A288-01C705EBE67E"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "314BB9AA-25A2-4FA9-9B2E-CB65F65B3ADE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "5BEE162F-A016-4EDB-A7D1-1F87945EED3E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "FA5F1D78-1B82-46BE-BB02-2265AB7419AC"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "A7885696-ED18-495A-9D6E-3F3400C57D58"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "7F553CD8-01FF-4616-A32C-4F4B5844A6FD"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "5C109678-1FD0-43EB-9BA3-F781DEB33220"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "FAE9D5FC-79D6-48F8-977C-F296436F37DA"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "547D6BFB-5DE8-4027-88EF-0349400494D1"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "ED26C579-CCBE-4F25-ADC1-592B60CD03E4"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "33FC0627-C380-45CC-8FFC-AF600D2CA7AA"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "7881BC1C-1B10-43D4-AD4A-545D7C7C4160"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "1D4C435C-7610-4FD9-B5B6-68386E9F9BE3"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "FC4C7C62-ACB0-4570-8D09-F3540CAE54F5"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "17DCA2C1-FD7A-430F-AD7C-4AB2DF7E233E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "089CECB3-75B4-4359-A29D-9BD2F105661B"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "053EDC2D-3DC5-4612-8010-25FEA32F5FF6"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "F6DFBD76-20DB-497D-B407-1EAA5555B49F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "5A59E57F-8D51-4127-92C7-4421DF952419"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "89947BF1-7F05-4099-BFBB-6C2AD5B46A16"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "64B21CD4-4D50-45EC-8297-D54A1BBC6521"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "1F359537-05CA-4337-ACED-F2ED107161A0"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "5A8D708F-165C-4FB8-83EB-7879DD85D0D2"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "DA369F2E-2E17-4BEA-B894-14656D977B93"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "BD45E6C2-2C91-4B3C-A442-410A1B84BC9F"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "D38EFD71-28B9-48B0-8C6B-BF96D8F140EF"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "7E0B6F31-DC75-49C9-9E59-EF1CD68B1B3D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "41A69B09-7E77-4159-90FB-521F42FA5599"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "13.1.0" ,
"versionEndIncluding" : "13.1.3.3" ,
"matchCriteriaId" : "DCC39897-00DF-4E6F-8608-570098011978"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "14.1.0" ,
"versionEndIncluding" : "14.1.2.3" ,
"matchCriteriaId" : "8D806FBF-8E6D-412C-B547-92AD9294B639"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "15.0.0" ,
"versionEndIncluding" : "15.1.0.1" ,
"matchCriteriaId" : "73B09FEB-3C78-4CAF-9CAD-B10C308B687A"
}
]
}
]
}
] ,
"references" : [
{
"url" : "https://support.f5.com/csp/article/K03386032" ,
"source" : "f5sirt@f5.com" ,
"tags" : [
"Vendor Advisory"
]
2024-11-23 13:10:58 +00:00
} ,
{
"url" : "https://support.f5.com/csp/article/K03386032" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
2023-04-24 12:24:31 +02:00
}
]
}
