CVE-2020-5870
published 2020-04-24CVE-2020-5870: In BIG-IQ 5.2.0-7.0.0, high availability (HA) synchronization mechanisms do not use any form of authentication for connecting to the peer.
high8.1CVSS 3.1
AVAACLPRNUINSUCHIHAN
In BIG-IQ 5.2.0-7.0.0, high availability (HA) synchronization mechanisms do not use any form of authentication for connecting to the peer.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f5 | big-iq | — | — |
| f5 | big-iq_centralized_management | — | — |
| f5 | big-iq_centralized_management | 5.2.0 – 5.4.0 | — |
| f5 | big-iq_centralized_management | 6.0.0 – 6.1.0 | — |
| f5 | big-iq_centralized_management | >= 7.0.0 < 7.1.0 | 7.1.0 |