Lucene search
PRIOn knowledge basePRION:CVE-2020-5910HistoryJul 02, 2020 - 1:15 p.m.
Authentication flaw
2020-07-0213:15:00
PRIOn knowledge base
www.prio-n.com
5
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized.
| CPE | Name | Operator | Version |
|---|---|---|---|
| nginx_controller | ge | 2.0.0 | |
| nginx_controller | le | 2.9.0 | |
| nginx_controller | eq | 1.0.1 | |
| nginx_controller | ge | 3.0.0 | |
| nginx_controller | le | 3.5.0 |
References
Related
cvelist
cvelist
CVE-2020-5910
2020-07-02 12:25:11
nvd
nvd
CVE-2020-5910
2020-07-02 13:15:10
cve
cve
CVE-2020-5910
2020-07-02 13:15:10
f5
f5
K59209532 : NGINX Controller NATS vulnerability CVE-2020-5910
2020-07-01 00:00:00