logo
DATABASE RESOURCES PRICING ABOUT US

F5 Networks BIG-IP : BIG-IP Edge Client for Windows vulnerability (K15838353)

Description

The BIG-IP Edge Client components in BIG-IP APM, Edge Gateway, and FirePass legacyallow attackers to obtain the full session ID from process memory. (CVE-2020-5892) Impact An attacker with sufficient local privileges on a client machine running Windows may be able to gain access to the full session ID. Note : This vulnerability is limited to the BIG-IP Edge Client, F5 Access, and FirePass legacy client for Windows only; it does not impact the BIG-IP or FirePass host.


Related