Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K64571774
HistoryNov 18, 2020 - 9:10 p.m.

BIG-IP virtual server TCP sequence numbers vulnerability CVE-2020-5947

2020-11-1821:10:00
support.f5.com
23
big-ip
vulnerability
cve-2020-5947
tcp sequence
prediction attack
platform vulnerability
hardware-based syn cookie
software

EPSS

0.001

Percentile

22.7%

JSON

On specific BIG-IP platforms, attackers may be able to obtain TCP sequence numbers from the BIG-IP system that can be reused in future connections with the same source and destination port and IP numbers. (CVE-2020-5947)

Impact

Attackers may be able to spoof TCP packets to be used by a future connection, resulting in a TCP sequence prediction attack.

This issue affects platforms that do not have hardware-based SYN cookie capabilities. The following BIG-IP platforms do not contain the high speed bus (HSBe2) chip and do not have hardware-based SYN cookie capability, and are therefore vulnerable:

  • BIG-IP 2000 series (C112)
  • BIG-IP 4000 series (C113)
  • BIG-IP i2000 series (C117)
  • BIG-IP i4000 series (C115)
  • BIG-IP Virtual Edition (VE)

Related

nessus 1
cvelist 1
nvd 1
prion 1
cve 1
nessus
nessus
F5 Networks BIG-IP : BIG-IP virtual server TCP sequence numbers vulnerability (K64571774)
2020-11-19 00:00:00
cvelist
cvelist
CVE-2020-5947
2020-11-19 00:14:19
nvd
nvd
CVE-2020-5947
2020-11-19 01:15:12
prion
prion
Design/Logic Flaw
2020-11-19 01:15:00
cve
cve
CVE-2020-5947
2020-11-19 01:15:12

EPSS

0.001

Percentile

22.7%

JSON
Related for F5:K64571774
nessus1cvelist1nvd1prion1cve1