CVE-2020-5874

Published: Apr 30, 2020Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

On BIG-IP APM 15.0.0-15.0.1.2, 14.1.0-14.1.2.3, and 14.0.0-14.0.1, in certain circumstances, an attacker sending specifically crafted requests to a BIG-IP APM virtual server may cause a disruption of service provided by the Traffic Management Microkernel(TMM).

Affected (3)

Products: F5: Big Ip Access Policy Manager

1 product

Big Ip Access Policy Manager

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Access Policy Manager	From 14.0.0 to 14.0.1
F5 Big Ip Access Policy Manager	From 14.1.0 to 14.1.2.3
F5 Big Ip Access Policy Manager	From 15.0.0 to 15.0.1.2

References (2)

https://support.f5.com/csp/article/K46901953

Source: f5sirt@f5.com

Vendor Advisory

https://support.f5.com/csp/article/K46901953

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.