CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-5869

In BIG-IQ 5.2.0-7.0.0, high availability (HA) synchronization is not secure by TLS and may allow on-path attackers to read / modify confidential data in transit.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.7%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

Products affected by CVE-2020-5869

F5 » Big-Iq Centralized Management » Version: 5.2.0

cpe:2.3:a:f5:big-iq_centralized_management:5.2.0
F5 » Big-Iq Centralized Management » Version: 5.3.0

cpe:2.3:a:f5:big-iq_centralized_management:5.3.0
F5 » Big-Iq Centralized Management » Version: 5.4.0

cpe:2.3:a:f5:big-iq_centralized_management:5.4.0
F5 » Big-Iq Centralized Management » Version: 6.0.0

cpe:2.3:a:f5:big-iq_centralized_management:6.0.0
F5 » Big-Iq Centralized Management » Version: 6.0.1

cpe:2.3:a:f5:big-iq_centralized_management:6.0.1
F5 » Big-Iq Centralized Management » Version: 6.1.0

cpe:2.3:a:f5:big-iq_centralized_management:6.1.0
F5 » Big-Iq Centralized Management » Version: 7.0.0

cpe:2.3:a:f5:big-iq_centralized_management:7.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-5869

Products

Pricing

Contact Us