CVE-2020-27720

Published: Dec 24, 2020Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation (PBA) mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may cause the Traffic Management Microkernel (TMM) to restart.

Affected (8)

Products: F5: Big Ip Carrier Grade Nat, Big Ip Local Traffic Manager

2 products

Big Ip Carrier Grade Nat

Big Ip Local Traffic Manager

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Carrier Grade Nat	From 13.1.0 to 13.1.3
F5 Big Ip Carrier Grade Nat	From 14.1.0 to 14.1.3.1
F5 Big Ip Carrier Grade Nat	From 15.1.0 to 15.1.1
F5 Big Ip Carrier Grade Nat	From 16.0.0 to 16.0.1
F5 Big Ip Local Traffic Manager	From 13.1.0 to 13.1.3
F5 Big Ip Local Traffic Manager	From 14.1.0 to 14.1.3.1
F5 Big Ip Local Traffic Manager	From 15.1.0 to 15.1.1
F5 Big Ip Local Traffic Manager	From 16.0.0 to 16.0.1

References (2)

https://support.f5.com/csp/article/K04048104

Source: f5sirt@f5.com

Vendor Advisory

https://support.f5.com/csp/article/K04048104

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.