Lucene search
This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.F5_BIGIP_SOL01054113.NASLHistoryMar 27, 2020 - 12:00 a.m.
F5 Networks BIG-IP : BIG-IP AWS vulnerability (K01054113)
2020-03-2700:00:00
This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
7.7 High
AI Score
Confidence
High
Under certain conditions, while sending traffic, the Traffic Management Microkernel (TMM) may produce a core file or stop processing new traffic with the Data Plane Development Kit (DPDK)/Elastic Network Adapter (ENA) driver on Amazon Web Services (AWS) systems.(CVE-2020-5862)
Impact
A remote attacker may be able to cause TMM to stop processing new traffic and effect a remote denial of service (DoS).
This issue does not affect any other hardware, virtual platforms, orcloud provider, as the affected driver is specific to AWS.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from F5 Networks BIG-IP Solution K01054113.
#
# The text description of this plugin is (C) F5 Networks.
#
include('compat.inc');
if (description)
{
script_id(134956);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/11/02");
script_cve_id("CVE-2020-5862");
script_name(english:"F5 Networks BIG-IP : BIG-IP AWS vulnerability (K01054113)");
script_set_attribute(attribute:"synopsis", value:
"The remote device is missing a vendor-supplied security patch.");
script_set_attribute(attribute:"description", value:
"Under certain conditions, while sending traffic, the Traffic
Management Microkernel (TMM) may produce a core file or stop
processing new traffic with the Data Plane Development Kit
(DPDK)/Elastic Network Adapter (ENA) driver on Amazon Web Services
(AWS) systems.(CVE-2020-5862)
Impact
A remote attacker may be able to cause TMM to stop processing new
traffic and effect a remote denial of service (DoS).
This issue does not affect any other hardware, virtual platforms,
orcloud provider, as the affected driver is specific to AWS.");
script_set_attribute(attribute:"see_also", value:"https://my.f5.com/manage/s/article/K01054113");
script_set_attribute(attribute:"solution", value:
"Upgrade to one of the non-vulnerable versions listed in the F5 Solution K01054113.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-5862");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/11/25");
script_set_attribute(attribute:"patch_publication_date", value:"2020/03/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/03/27");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_access_policy_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_advanced_firewall_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_acceleration_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_security_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_application_visibility_and_reporting");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_domain_name_system");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_global_traffic_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_link_controller");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_local_traffic_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/a:f5:big-ip_policy_enforcement_manager");
script_set_attribute(attribute:"cpe", value:"cpe:/h:f5:big-ip");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"F5 Networks Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("f5_bigip_detect.nbin");
script_require_keys("Host/local_checks_enabled", "Host/BIG-IP/hotfix", "Host/BIG-IP/modules", "Host/BIG-IP/version", "Settings/ParanoidReport");
exit(0);
}
include('f5_func.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var version = get_kb_item('Host/BIG-IP/version');
if ( ! version ) audit(AUDIT_OS_NOT, 'F5 Networks BIG-IP');
if ( isnull(get_kb_item('Host/BIG-IP/hotfix')) ) audit(AUDIT_KB_MISSING, 'Host/BIG-IP/hotfix');
if ( ! get_kb_item('Host/BIG-IP/modules') ) audit(AUDIT_KB_MISSING, 'Host/BIG-IP/modules');
if (report_paranoia < 2) audit(AUDIT_PARANOID);
var sol = 'K01054113';
var vmatrix = {
'AFM': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'AM': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'APM': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'ASM': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'AVR': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'DNS': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'GTM': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'LC': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'LTM': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
},
'PEM': {
'affected': [
'15.0.0-15.1.0','14.1.0-14.1.2'
],
'unaffected': [
'16.0.0','15.1.0.2','15.0.1.2','14.1.2.3'
],
}
};
if (bigip_is_affected(vmatrix:vmatrix, sol:sol))
{
var extra = NULL;
if (report_verbosity > 0) extra = bigip_report_get();
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : extra
);
}
else
{
var tested = bigip_get_tested_modules();
var audit_extra = 'For BIG-IP module(s) ' + tested + ',';
if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);
else audit(AUDIT_HOST_NOT, 'running any of the affected modules');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| f5 | big-ip_access_policy_manager | cpe:/a:f5:big-ip_access_policy_manager | |
| f5 | big-ip_advanced_firewall_manager | cpe:/a:f5:big-ip_advanced_firewall_manager | |
| f5 | big-ip_application_acceleration_manager | cpe:/a:f5:big-ip_application_acceleration_manager | |
| f5 | big-ip_application_security_manager | cpe:/a:f5:big-ip_application_security_manager | |
| f5 | big-ip_application_visibility_and_reporting | cpe:/a:f5:big-ip_application_visibility_and_reporting | |
| f5 | big-ip_domain_name_system | cpe:/a:f5:big-ip_domain_name_system | |
| f5 | big-ip_global_traffic_manager | cpe:/a:f5:big-ip_global_traffic_manager | |
| f5 | big-ip_link_controller | cpe:/a:f5:big-ip_link_controller | |
| f5 | big-ip_local_traffic_manager | cpe:/a:f5:big-ip_local_traffic_manager | |
| f5 | big-ip_policy_enforcement_manager | cpe:/a:f5:big-ip_policy_enforcement_manager |
Related
cve
cve
CVE-2020-5862
2020-03-27 15:15:00
CVE-2021-23051
2021-09-14 13:15:00
prion
prion
Design/Logic Flaw
2020-03-27 15:15:00
Design/Logic Flaw
2021-09-14 13:15:00
f5
f5
K01153535 : BIG-IP AWS vulnerability CVE-2021-23051
2021-08-24 00:00:00
K01054113 : BIG-IP AWS vulnerability CVE-2020-5862
2020-03-27 00:00:00
K50974556 : Overview of F5 vulnerabilities (August 2021)
2021-08-24 00:00:00
nessus
nessus
F5 Networks BIG-IP : BIG-IP AWS vulnerability (K01153535)
2022-07-28 00:00:00