7.5

CVE-2020-5936

On BIG-IP LTM 15.1.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, and 12.1.0-12.1.5.1, the Traffic Management Microkernel (TMM) process may consume excessive resources when processing SSL traffic and client authentication are enabled on the client SSL profile.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
F5Big-ip Local Traffic Manager Version >= 12.1.0 < 12.1.5.2
F5Big-ip Local Traffic Manager Version >= 13.1.0 <= 13.1.3.4
F5Big-ip Local Traffic Manager Version >= 14.1.0 < 14.1.2.8
F5Big-ip Local Traffic Manager Version >= 15.0.0 < 15.1.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.09% 0.61
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource.

https://support.f5.com/csp/article/K44020030
Vendor Advisory