Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K97733133
HistoryApr 30, 2020 - 12:00 a.m.

K97733133 : BIG-IP APM Edge Client vulnerability CVE-2020-5893

2020-04-3000:00:00
my.f5.com
12

AI Score

4.1

Confidence

High

EPSS

0.001

Percentile

35.9%

JSON

Security Advisory Description

When a user connects to a VPN using BIG-IP Edge Client over an unsecure network, BIG-IP Edge Client responds to authentication requests over HTTP while sending probes for captive portal detection. (CVE-2020-5893)

Impact

An attacker can use a man-in-the-middle (MITM) attack by deploying a malicious captive portal to exploit this vulnerability to obtain the encrypted NT Lan Manager (NTLM) challenge response. This can be used to carry out brute force dictionary attacks or NTLM relay attacks if the attacker has access to the Active Directory network.

Related

cve 1
cvelist 1
nessus 1
prion 1
nvd 1
cve
cve
CVE-2020-5893
2020-04-30 21:15:17
cvelist
cvelist
CVE-2020-5893
2020-04-30 21:00:49
nessus
nessus
F5 Networks BIG-IP : BIG-IP APM Edge Client vulnerability (K97733133)
2020-07-02 00:00:00
prion
prion
Authentication flaw
2020-04-30 21:15:00
nvd
nvd
CVE-2020-5893
2020-04-30 21:15:17

AI Score

4.1

Confidence

High

EPSS

0.001

Percentile

35.9%

JSON
Related for F5:K97733133
cve1cvelist1nessus1prion1nvd1