Lucene search
F5CVELIST:CVE-2020-27718HistoryDec 24, 2020 - 2:57 p.m.
CVE-2020-27718
2020-12-2414:57:33
f5
www.cve.org
0.001 Low
EPSS
Percentile
42.6%
When a BIG-IP ASM or Advanced WAF system running version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, or 11.6.1-11.6.5.2 processes requests with JSON payload, an unusually large number of parameters can cause excessive CPU usage in the BIG-IP ASM bd process.
CNA Affected
[
{
"product": "BIG-IP ASM & Advanced WAF",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, 11.6.1-11.6.5.2"
}
]
}
]References
Related
nvd
nvd
CVE-2020-27718
2020-12-24 15:15:12
nessus
nessus
F5 Networks BIG-IP : BIG-IP ASM vulnerability (K58102101)
2020-12-17 00:00:00
f5
f5
K58102101 : BIG-IP ASM vulnerability CVE-2020-27718
2020-12-17 00:00:00
prion
prion
Code injection
2020-12-24 15:15:00
cve
cve
CVE-2020-27718
2020-12-24 15:15:12