CVE-2020-27721

Published: Dec 24, 2020Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

In versions 16.0.0-16.0.0.1, 15.1.0-15.1.1, 14.1.0-14.1.3, 13.1.0-13.1.3.5, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, in a BIG-IP DNS / BIG-IP LTM GSLB deployment, under certain circumstances, the BIG-IP DNS system may stop using a BIG-IP LTM virtual server for DNS response.

Affected (12)

Products: F5: Big Ip Domain Name System, Big Ip Global Traffic Manager

2 products

Big Ip Domain Name System

Big Ip Global Traffic Manager

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Domain Name System	From 11.6.1 to 11.6.5
F5 Big Ip Domain Name System	From 12.1.0 to 12.1.5
F5 Big Ip Domain Name System	From 13.1.0 to 13.1.3
F5 Big Ip Domain Name System	From 14.1.0 to 14.1.3.1
F5 Big Ip Domain Name System	From 15.0.0 to 15.1.2
F5 Big Ip Domain Name System	From 16.0.0 to 16.0.1
F5 Big Ip Global Traffic Manager	From 11.6.1 to 11.6.5
F5 Big Ip Global Traffic Manager	From 12.1.0 to 12.1.5
F5 Big Ip Global Traffic Manager	From 13.1.0 to 13.1.3
F5 Big Ip Global Traffic Manager	From 14.1.0 to 14.1.3.1
F5 Big Ip Global Traffic Manager	From 15.0.0 to 15.1.2
F5 Big Ip Global Traffic Manager	From 16.0.0 to 16.0.1

References (2)

https://support.f5.com/csp/article/K52035247

Source: f5sirt@f5.com

Vendor Advisory

https://support.f5.com/csp/article/K52035247

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.