Unknown
CVE-2020-5851
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2020-5851
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
On impacted versions and platforms the Trusted Platform Module (TPM) system integrity check cannot detect modifications to specific system components. This issue only impacts specific engineering hotfixes and platforms. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.2.0.45.4-ENG Hotfix-BIGIP-14.1.0.2.0.62.4-ENG
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- big-ip access policy manager 14.1.0.2.0.45.4,
- big-ip access policy manager 14.1.0.2.0.62.4,
- big-ip advanced firewall manager 14.1.0.2.0.45.4,
- big-ip advanced firewall manager 14.1.0.2.0.62.4,
- big-ip analytics 14.1.0.2.0.45.4,
- big-ip analytics 14.1.0.2.0.62.4,
- big-ip application acceleration manager 14.1.0.2.0.45.4,
- big-ip application acceleration manager 14.1.0.2.0.62.4,
- big-ip application security manager 14.1.0.2.0.45.4,
- big-ip application security manager 14.1.0.2.0.62.4,
- big-ip domain name system 14.1.0.2.0.45.4,
- big-ip domain name system 14.1.0.2.0.62.4,
- big-ip edge gateway 14.1.0.2.0.45.4,
- big-ip edge gateway 14.1.0.2.0.62.4,
- big-ip fraud protection service 14.1.0.2.0.45.4,
- big-ip fraud protection service 14.1.0.2.0.62.4,
- big-ip global traffic manager 14.1.0.2.0.45.4,
- big-ip global traffic manager 14.1.0.2.0.62.4,
- big-ip link controller 14.1.0.2.0.45.4,
- big-ip link controller 14.1.0.2.0.62.4,
- big-ip local traffic manager 14.1.0.2.0.45.4,
- big-ip local traffic manager 14.1.0.2.0.62.4,
- big-ip policy enforcement manager 14.1.0.2.0.45.4,
- big-ip policy enforcement manager 14.1.0.2.0.62.4,
- big-ip webaccelerator 14.1.0.2.0.45.4,
- big-ip webaccelerator 14.1.0.2.0.62.4
Weaknesses
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
