CVE-2020-5862

CVE Database · CVE-2020-5862

CVE-2020-5862

· HIGHModified

CVSS v3.1

7.5

EPSS

1.07%

Published

Mar 27, 2020

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

On BIG-IP 15.1.0-15.1.0.1, 15.0.0-15.0.1.1, and 14.1.0-14.1.2.2, under certain conditions, TMM may crash or stop processing new traffic with the DPDK/ENA driver on AWS systems while sending traffic. This issue does not affect any other platforms, hardware or virtual, or any other cloud provider since the affected driver is specific to AWS.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products (33)

f5 · big-ip_access_policy_managervulnerable

f5 · big-ip_advanced_firewall_managervulnerable

f5 · big-ip_analyticsvulnerable

f5 · big-ip_application_acceleration_managervulnerable

References (2)

https://support.f5.com/csp/article/K01054113

Vendor Advisory

https://support.f5.com/csp/article/K01054113

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs

f5 · big-ip_application_acceleration_managervulnerable

f5 · big-ip_application_security_managervulnerable

f5 · big-ip_domain_name_systemvulnerable

f5 · big-ip_fraud_protection_servicevulnerable

f5 · big-ip_global_traffic_managervulnerable

f5 · big-ip_link_controllervulnerable

f5 · big-ip_local_traffic_managervulnerable

f5 · big-ip_policy_enforcement_managervulnerable