Vulnerability Details CVE-2020-5870
In BIG-IQ 5.2.0-7.0.0, high availability (HA) synchronization mechanisms do not use any form of authentication for connecting to the peer.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.8%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 4.8
References
Products affected by CVE-2020-5870
-
cpe:2.3:a:f5:big-iq_centralized_management:5.2.0
-
cpe:2.3:a:f5:big-iq_centralized_management:5.3.0
-
cpe:2.3:a:f5:big-iq_centralized_management:5.4.0
-
cpe:2.3:a:f5:big-iq_centralized_management:6.0.0
-
cpe:2.3:a:f5:big-iq_centralized_management:6.0.1
-
cpe:2.3:a:f5:big-iq_centralized_management:6.1.0
-
cpe:2.3:a:f5:big-iq_centralized_management:7.0.0
-
cpe:2.3:a:f5:big-iq_centralized_management:7.0.0.2