Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K65720640
HistoryApr 30, 2020 - 12:00 a.m.

K65720640 : BIG-IP SSL state mirroring vulnerability CVE-2020-5886

2020-04-3000:00:00
my.f5.com
14

AI Score

9.2

Confidence

High

EPSS

0.002

Percentile

53.8%

JSON

Security Advisory Description

BIG-IP systems setup for connection mirroring in a High Availability (HA) pair transfers sensitive cryptographic objects over an insecure communications channel. This is a control plane issue which is exposed only on the network used for connection mirroring. (CVE-2020-5886)

Impact

On-path attackers may be able to read and modify the Diffie-Hellman (DH) parameters used by data plane SSL/TLS enabled virtual servers. Only HA pairs with session mirroring or connection mirroring enabled are vulnerable.

Related

nessus 1
cvelist 1
prion 1
cve 1
nvd 1
nessus
nessus
F5 Networks BIG-IP : BIG-IP SSL state mirroring vulnerability (K65720640)
2020-04-30 00:00:00
cvelist
cvelist
CVE-2020-5886
2020-04-30 20:50:43
prion
prion
Design/Logic Flaw
2020-04-30 21:15:00
cve
cve
CVE-2020-5886
2020-04-30 21:15:17
nvd
nvd
CVE-2020-5886
2020-04-30 21:15:17

AI Score

9.2

Confidence

High

EPSS

0.002

Percentile

53.8%

JSON
Related for F5:K65720640
nessus1cvelist1prion1cve1nvd1