CVE-2020-5876

{"id": "CVE-2020-5876", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.2}]}, "published": "2020-04-30T21:15:16.713", "references": [{"url": "https://support.f5.com/csp/article/K32121038", "tags": ["Vendor Advisory"], "source": "f5sirt@f5.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-319"}, {"lang": "en", "value": "CWE-362"}]}], "descriptions": [{"lang": "en", "value": "On BIG-IP 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, a race condition exists where mcpd and other processes may make unencrypted connection attempts to a new configuration sync peer. The race condition can occur when changing the ConfigSync IP address of a peer, adding a new peer, or when the Traffic Management Microkernel (TMM) first starts up."}, {"lang": "es", "value": "En BIG-IP versiones 15.0.0 hasta 15.0.1.3, 14.1.0 hasta 14.1.2.3, 13.1.0 hasta 13.1.3.3, 12.1.0 hasta 12.1.5.1 y 11.6.1 hasta 11.6.5.1, Existe una condici\u00f3n de carrera donde mcpd y otros procesos pueden hacer intentos de conexi\u00f3n sin cifrar a un nuevo peer de sincronizaci\u00f3n de configuraci\u00f3n. La condici\u00f3n de carrera puede presentarse cuando se cambia la direcci\u00f3n IP de ConfigSync de un peer, agregar un nuevo peer o cuando se inicia por primera vez el Traffic Management Microkernel (TMM)."}], "lastModified": "2021-07-21T11:39:23.747", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB74041C-839F-42B9-9DEA-3E1AF2736AFA", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BA88EC9-FD8F-4CAF-8DDC-5358ABCA17C1", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "002D2E41-C4FC-45CF-8C28-D0A7D3419880", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07FC84CA-3E12-43FB-ADBD-7B988DEF3A97", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63F60AB8-30E7-43E7-AE68-E05971B572B1", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CD4020D-7046-4002-97CA-E02CF72C3E56", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3E0E5DC-5F7D-470D-98DC-5D5D2C331BAB", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "314BB9AA-25A2-4FA9-9B2E-CB65F65B3ADE", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BEE162F-A016-4EDB-A7D1-1F87945EED3E", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "816488A2-B55F-45BB-B8A4-44269B115F01", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6C87280-4318-4923-92DE-4062BD2CBE3E", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "243AB00B-6322-4B94-A68D-980A778FACE4", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7885696-ED18-495A-9D6E-3F3400C57D58", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F553CD8-01FF-4616-A32C-4F4B5844A6FD", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D92AD31C-6726-4FBC-8A87-5E1504199F5A", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0444F752-D6F5-4EB5-ABE5-3E8D9C03BC23", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54ABBB5C-A2C1-4185-A11B-2A1681FD57DC", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FAE9D5FC-79D6-48F8-977C-F296436F37DA", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "547D6BFB-5DE8-4027-88EF-0349400494D1", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DDA48367-B02C-4BE4-AB19-B9CADE04A2BB", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8915A42F-EBFF-45A7-9F4C-A8467738313D", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "341A3823-A402-49D5-8F57-809A16CFCD25", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33FC0627-C380-45CC-8FFC-AF600D2CA7AA", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7881BC1C-1B10-43D4-AD4A-545D7C7C4160", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C191D46A-43DF-4B8E-A0D4-F837BC4BEC69", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "328B2F03-D651-4696-AF52-3E17DE7E816F", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "687DFFA9-6791-40BD-887D-969452EECA96", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC4C7C62-ACB0-4570-8D09-F3540CAE54F5", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17DCA2C1-FD7A-430F-AD7C-4AB2DF7E233E", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3506B14A-DE35-40E6-AC4F-34A5EB0E9B2E", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8575B56-192C-4D65-A904-3B1A7F09EE89", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBFB6841-AC42-4A66-9684-08454A1FBD36", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "053EDC2D-3DC5-4612-8010-25FEA32F5FF6", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6DFBD76-20DB-497D-B407-1EAA5555B49F", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86FC4D6F-286F-47B3-8CA5-2E8E21AEB8FF", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5B7F1DB-0157-4D8C-8B27-440196D6638E", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C9C0E51-1262-42E0-864E-D112A2DBBA15", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89947BF1-7F05-4099-BFBB-6C2AD5B46A16", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "64B21CD4-4D50-45EC-8297-D54A1BBC6521", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B20CB1EA-F2E7-4E42-8D82-C62721409717", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9472C02B-89B0-43E2-85FF-A80016C5AE14", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCB3A134-E649-4EB6-88B0-74331C593A90", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A8D708F-165C-4FB8-83EB-7879DD85D0D2", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA369F2E-2E17-4BEA-B894-14656D977B93", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82875565-9658-4BFF-99A3-6A1FA6F6F4A6", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5394E974-BE2C-4708-94C4-0E90BC8D0BE5", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA7C740B-CC18-4A4E-B7B8-57D91100103C", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D38EFD71-28B9-48B0-8C6B-BF96D8F140EF", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E0B6F31-DC75-49C9-9E59-EF1CD68B1B3D", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6419E59-6C39-4CDA-907C-D37CE43262AF", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "661461D9-7F91-4504-B046-7A416AD5A21B", "versionEndIncluding": "11.6.5.1", "versionStartIncluding": "11.6.1"}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA7E180E-DCBE-4421-A018-C8D4B495D20D", "versionEndIncluding": "12.1.5.1", "versionStartIncluding": "12.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCC39897-00DF-4E6F-8608-570098011978", "versionEndIncluding": "13.1.3.3", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D806FBF-8E6D-412C-B547-92AD9294B639", "versionEndIncluding": "14.1.2.3", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1ABE157C-A6EF-443C-9E67-8C58B0037A96", "versionEndIncluding": "15.1.0.3", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "f5sirt@f5.com"}