vulnerability

F5 Networks: CVE-2020-5881: K03386032: BIG-IP VE interface vulnerability CVE-2020-5881

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Apr 29, 2020	Apr 30, 2020	Aug 23, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Apr 29, 2020

Added

Apr 30, 2020

Modified

Aug 23, 2024

Description

On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when the BIG-IP Virtual Edition (VE) is configured with VLAN groups and there are devices configured with OSPF connected to it, the Network Device Abstraction Layer (NDAL) Interfaces can lock up and in turn disrupting the communication between the mcpd and tmm processes.

Solution

f5-big-ip-upgrade-latest

References

CVE-2020-5881
https://attackerkb.com/topics/CVE-2020-5881
URL-https://my.f5.com/manage/s/article/K03386032

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today