CVE-2020-5888: On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for adjacent network (layer 2) attackers…

high8.1CVSS 3.1

AVAACLPRNUINSUCHIHAN

On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for adjacent network (layer 2) attackers to access local daemons and bypass port lockdown settings.

Affected

44 ranges· showing 25

Vendor	Product	Version range	Fixed in
f5	big-ip_aam	—	—
f5	big-ip_access_policy_manager	>= 14.0.0 < 14.1.2.4	14.1.2.4
f5	big-ip_access_policy_manager	>= 15.0.0 < 15.0.1.3	15.0.1.3
f5	big-ip_access_policy_manager	>= 15.1.0 < 15.1.0.2	15.1.0.2
f5	big-ip_advanced_firewall_manager	>= 14.1.0 < 14.1.2.4	14.1.2.4
f5	big-ip_advanced_firewall_manager	>= 15.0.0 < 15.0.1.3	15.0.1.3
f5	big-ip_advanced_firewall_manager	>= 15.1.0 < 15.1.0.2	15.1.0.2
f5	big-ip_afm	—	—
f5	big-ip_analytics	—	—
f5	big-ip_analytics	>= 14.0.0 < 14.1.2.4	14.1.2.4
f5	big-ip_analytics	>= 15.0.0 < 15.0.1.3	15.0.1.3
f5	big-ip_analytics	>= 15.1.0 < 15.1.0.2	15.1.0.2
f5	big-ip_apm	—	—
f5	big-ip_application_acceleration_manager	>= 14.1.0 < 14.1.2.4	14.1.2.4
f5	big-ip_application_acceleration_manager	>= 15.0.0 < 15.0.1.3	15.0.1.3
f5	big-ip_application_acceleration_manager	>= 15.1.0 < 15.1.0.2	15.1.0.2
f5	big-ip_application_security_manager	>= 14.0.0 < 14.1.2.4	14.1.2.4
f5	big-ip_application_security_manager	>= 15.0.0 < 15.0.1.3	15.0.1.3
f5	big-ip_application_security_manager	>= 15.1.0 < 15.1.0.2	15.1.0.2
f5	big-ip_asm	—	—
f5	big-ip_dns	—	—
f5	big-ip_domain_name_system	>= 14.0.0 < 14.1.2.4	14.1.2.4
f5	big-ip_domain_name_system	>= 15.0.0 < 15.0.1.3	15.0.1.3
f5	big-ip_domain_name_system	>= 15.1.0 < 15.1.0.2	15.1.0.2
f5	big-ip_fps	—	—