{ "id": "CVE-2020-5923", "sourceIdentifier": "f5sirt@f5.com", "published": "2020-08-26T15:15:13.523", "lastModified": "2024-11-21T05:34:50.130", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", "value": "In BIG-IP versions 15.0.0-15.1.0.4, 14.1.0-14.1.2.6, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1 and BIG-IQ versions 5.4.0-7.0.0, Self-IP port-lockdown bypass via IPv6 link-local addresses." }, { "lang": "es", "value": "En BIG-IP versiones 15.0.0-15.1.0.4, 14.1.0-14.1.2.6, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1 y 11.6.1-11.6.5.1 y BIG-IQ versiones 5.4.0-7.0.0, una omisi\u00f3n del bloqueo de puerto Self-IP por medio de direcciones link-local IPv6" } ], "metrics": { "cvssMetricV31": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "ADJACENT_NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE" }, "exploitabilityScore": 2.8, "impactScore": 2.5 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:N", "baseScore": 4.8, "accessVector": "ADJACENT_NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "NONE" }, "baseSeverity": "MEDIUM", "exploitabilityScore": 6.5, "impactScore": 4.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "BB236652-BD60-4FEF-9D59-8B49FB3A7655" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "EE0532FA-7B7B-46B3-AB10-0920034A7E43" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "592327AA-BCC4-4CD0-82C6-EA739F049E82" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "3829D757-B0FD-42A7-B2A5-95274FF461A2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "D74CEC7B-10F2-4A4D-9C27-87A360B63EDC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "ADB2B518-F813-4B11-BBF5-0BFB2979A6B8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "3B3DCE49-C37D-4951-AB57-7CDDEBA1C1E5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "3DD78D19-D17E-45EC-98C7-74D086AE68AA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "45F9B579-F0F4-42DB-9F29-734278B3CEE8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "02795117-99E5-4141-99DB-643548C732C9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "31E16A1B-E305-4390-976C-5F33A82EF396" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "0C3E75CB-C764-4868-8459-1FAC03506EE8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "F1C551C9-169C-450E-965A-4F9F3E2C785B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "DE6BA692-402E-4ACF-9177-D30D21009EE5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "D9624265-6375-4A5C-9ECB-8440B4EF9AEA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "0FB118FB-2EFB-4F17-B6E1-FC4B46B9C265" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "5D3F7911-FB00-4612-9109-9E7A407BC7B7" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "B547F46F-5563-4E7F-8B69-3D25C6C58521" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "B694BCD8-C5B4-491E-9F2D-2F5038E67A08" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "B8822B59-ED2E-43CA-9A83-C15CF814B37D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "8999F566-9884-4CAA-BED7-8CF72F11E6F8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "91BF72A9-EB50-4315-B956-5926967DCC46" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "4AEE0B76-3F8E-420A-9589-BF3FDB942DEB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "99801F76-09C1-4055-A15E-B4DEC0819033" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "1B5BABD9-A6B1-44DB-852B-46D53A29F34E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "F997F6D8-D08D-4EB0-BEA7-288AEFD6F28C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "73EC8EDA-669A-4750-934F-3B3FBF557080" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "C7917031-0735-483C-A8DA-11430056D568" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "7ACFC895-36F4-4C75-B218-8B9F0BF7CCE4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "91EFF7F9-02E9-47D5-9937-9B849724F53B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "925DA0B2-7570-4819-845C-C35E5B168F80" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "A0581EEF-98E6-4961-8178-BA2D7647F931" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "FFC5C221-AE58-4580-876A-E5FD7970A695" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "87DCED41-57D0-4257-A88D-C7D860EBB6B4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "797730AC-8561-455C-A80F-F998BAECE402" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "A4A036A0-5E0C-4E64-B88D-D1B61257896E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "32773569-67FE-4F08-A613-E507FCDEACEF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "463AA399-492A-4DB6-BFD1-31725012AE8F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "9DCA10DD-417C-44AE-97F4-7E34BC262E2B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "893198E8-C495-404B-9DB7-0B9147C74FE2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "97AB336E-2A10-4508-9F20-DB54D628355F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "4494F771-4026-478C-8004-B162653DC80C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "98314370-E3C8-4CB5-9F48-57004EB96D8F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "E15696EE-E094-4F58-99D7-7F4C6875841C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "5176822D-4FDD-4E5F-910F-B311F21DA35D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "54D289F0-1896-4996-AEDF-B299C6DB8945" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "A97489DC-A5DE-48AD-BBA2-F9078070F53A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "FBF128B7-874B-4E3A-B52F-1C2DE34F64A9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "C34BAE9A-74EA-4D55-802E-FD2A402331DD" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "48C22FBB-4A70-42CE-925A-F59210C6DA54" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "11.6.1", "versionEndExcluding": "11.6.5.2", "matchCriteriaId": "78F7A30F-4455-420D-9254-E9910E16EC3F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.1.0", "versionEndExcluding": "12.1.5.2", "matchCriteriaId": "1EDB944B-DF60-45AF-AD60-33E9667E0D12" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "13.1.0", "versionEndExcluding": "13.1.3.4", "matchCriteriaId": "20C58940-C7A3-47A9-8C9E-7B652E4F4750" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.1.0", "versionEndExcluding": "14.1.2.7", "matchCriteriaId": "6AE9FE91-55BE-4C31-9F39-23E7B8728E7C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "versionStartIncluding": "15.0.0", "versionEndExcluding": "15.1.0.5", "matchCriteriaId": "8E73951A-20AD-4D31-AB76-B8C3B1762A8C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.0.0", "versionEndIncluding": "6.1.0", "matchCriteriaId": "F37D18F2-8C6A-4557-85DC-2A751595423C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-iq_centralized_management:5.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "A5C1DACF-0562-4A41-A9EC-60D1DC065007" }, { "vulnerable": true, "criteria": "cpe:2.3:a:f5:big-iq_centralized_management:7.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "2B589C35-55F2-4D40-B5A6-8267EE20D627" } ] } ] } ], "references": [ { "url": "https://support.f5.com/csp/article/K05975972", "source": "f5sirt@f5.com", "tags": [ "Vendor Advisory" ] }, { "url": "https://support.f5.com/csp/article/K05975972", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ] } ] }