Lucene search
HistoryJan 14, 2020 - 4:15 p.m.
CVE-2020-5851
cve-2020-5851
tpm
integrity check
system components
hotfixes
platforms
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
4.6 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
25.1%
On impacted versions and platforms the Trusted Platform Module (TPM) system integrity check cannot detect modifications to specific system components. This issue only impacts specific engineering hotfixes and platforms. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.2.0.45.4-ENG Hotfix-BIGIP-14.1.0.2.0.62.4-ENG
Affected configurations
Node
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
f5big-ip_local_traffic_managerMatch14.1.0.2.0.45.4
ORf5big-ip_local_traffic_managerMatch14.1.0.2.0.62.4
Node
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
f5big-ip_advanced_firewall_managerMatch14.1.0.2.0.45.4
ORf5big-ip_advanced_firewall_managerMatch14.1.0.2.0.62.4
Node
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
f5big-ip_application_acceleration_managerMatch14.1.0.2.0.45.4
ORf5big-ip_application_acceleration_managerMatch14.1.0.2.0.62.4
Node
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
f5big-ip_analyticsMatch14.1.0.2.0.45.4
ORf5big-ip_analyticsMatch14.1.0.2.0.62.4
Node
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
f5big-ip_access_policy_managerMatch14.1.0.2.0.45.4
ORf5big-ip_access_policy_managerMatch14.1.0.2.0.62.4
Node
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
f5big-ip_application_security_managerMatch14.1.0.2.0.45.4
ORf5big-ip_application_security_managerMatch14.1.0.2.0.62.4
Node
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
f5big-ip_edge_gatewayMatch14.1.0.2.0.45.4
ORf5big-ip_edge_gatewayMatch14.1.0.2.0.62.4
Node
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
f5big-ip_fraud_protection_serviceMatch14.1.0.2.0.45.4
ORf5big-ip_fraud_protection_serviceMatch14.1.0.2.0.62.4
Node
f5big-ip_global_traffic_managerMatch14.1.0.2.0.45.4
ORf5big-ip_global_traffic_managerMatch14.1.0.2.0.62.4
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
Node
f5big-ip_link_controllerMatch14.1.0.2.0.45.4
ORf5big-ip_link_controllerMatch14.1.0.2.0.62.4
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
Node
f5big-ip_policy_enforcement_managerMatch14.1.0.2.0.45.4
ORf5big-ip_policy_enforcement_managerMatch14.1.0.2.0.62.4
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
Node
f5big-ip_webacceleratorMatch14.1.0.2.0.45.4
ORf5big-ip_webacceleratorMatch14.1.0.2.0.62.4
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
Node
f5big-ip_domain_name_systemMatch14.1.0.2.0.45.4
ORf5big-ip_domain_name_systemMatch14.1.0.2.0.62.4
f5big-ip_2800Match-
ORf5big-ip_i10600Match-
ORf5big-ip_i10800Match-
ORf5big-ip_i11600Match-
ORf5big-ip_i11800Match-
ORf5big-ip_i15600Match-
ORf5big-ip_i15800Match-
ORf5big-ip_i2600Match-
ORf5big-ip_i4600Match-
ORf5big-ip_i4800Match-
ORf5big-ip_i5600Match-
ORf5big-ip_i5800Match-
ORf5big-ip_i7600Match-
ORf5big-ip_i7800Match-
ORf5big-ip_i850Match-
CNA Affected
[
{
"product": "BIG-IP",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Hotfix-BIGIP-14.1.0.2.0.45.4-ENG, Hotfix-BIGIP-14.1.0.2.0.62.4-ENG"
}
]
}
]References
Related
f5
f5
nessus
nessus
cvelist
cvelist
CVE-2020-5851
2020-01-14 15:03:29
nvd
nvd
CVE-2020-5851
2020-01-14 16:15:11
prion
prion
Design/Logic Flaw
2020-01-14 16:15:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
4.6 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
25.1%
Related for CVE-2020-5851