What is the vulnerability ID?

The vulnerability ID is CVE-2020-5851.

What is the severity of CVE-2020-5851?

The severity of CVE-2020-5851 is medium.

What systems are affected by CVE-2020-5851?

CVE-2020-5851 affects F5 Big-ip Local Traffic Manager, F5 Big-ip Advanced Firewall Manager, F5 Big-ip Application Acceleration Manager, F5 BIG-IP Analytics, F5 Big-ip Access Policy Manager, F5 BIG-IP Application Security Manager, F5 Big-ip Edge Gateway, F5 Big-ip Fraud Protection Service, F5 Big-ip Global Traffic Manager, F5 Big-ip Link Controller, F5 Big-ip Policy Enforcement Manager, F5 Big-ip Webaccelerator, and F5 Big-ip Domain Name System on specific versions.

What is the impact of CVE-2020-5851?

CVE-2020-5851 allows modifications to specific system components that cannot be detected by the Trusted Platform Module (TPM) system integrity check.

How can I fix CVE-2020-5851?

To fix CVE-2020-5851, apply the necessary engineering hotfixes provided by F5 Networks.

Vulnerability/
CVE-2020-5851

medium

4.6

14/1/2020

29/1/2020

CVE-2020-5851

First published: Tue Jan 14 2020(Updated: )

On impacted versions and platforms the Trusted Platform Module (TPM) system integrity check cannot detect modifications to specific system components. This issue only impacts specific engineering hotfixes and platforms. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.2.0.45.4-ENG Hotfix-BIGIP-14.1.0.2.0.62.4-ENG

Credit: f5sirt@f5.com

Affected Software	Affected Version	How to fix
F5 BIG-IP Local Traffic Manager	=14.1.0.2.0.45.4
F5 BIG-IP Local Traffic Manager	=14.1.0.2.0.62.4
F5 BIG-IP 2800
F5 BIG-IP i10600 Firmware
F5 BIG-IP i10800 Firmware
F5 BIG-IP i11600 Firmware
F5 BIG-IP i11800 Firmware
F5 BIG-IP i15600 Firmware
F5 BIG-IP i15800 firmware
F5 BIG-IP i2600
F5 BIG-IP i4600
F5 BIG-IP i4800
F5 BIG-IP i5600 Firmware
F5 BIG-IP i5800 Firmware
F5 BIG-IP i7600 Firmware
F5 BIG-IP i7800 Firmware
F5 BIG-IP i850
F5 BIG-IP Advanced Firewall Manager	=14.1.0.2.0.45.4
F5 BIG-IP Advanced Firewall Manager	=14.1.0.2.0.62.4
f5 big-ip application acceleration manager	=14.1.0.2.0.45.4
f5 big-ip application acceleration manager	=14.1.0.2.0.62.4
F5 BIG-IP Analytics	=14.1.0.2.0.45.4
F5 BIG-IP Analytics	=14.1.0.2.0.62.4
F5 BIG-IP Access Policy Manager	=14.1.0.2.0.45.4
F5 BIG-IP Access Policy Manager	=14.1.0.2.0.62.4
F5 BIG-IP Application Security Manager	=14.1.0.2.0.45.4
F5 BIG-IP Application Security Manager	=14.1.0.2.0.62.4
F5 BIG-IP Edge Gateway	=14.1.0.2.0.45.4
F5 BIG-IP Edge Gateway	=14.1.0.2.0.62.4
f5 big-ip fraud protection service	=14.1.0.2.0.45.4
f5 big-ip fraud protection service	=14.1.0.2.0.62.4
F5 BIG-IP Global Traffic Manager	=14.1.0.2.0.45.4
F5 BIG-IP Global Traffic Manager	=14.1.0.2.0.62.4
f5 big-ip link controller	=14.1.0.2.0.45.4
f5 big-ip link controller	=14.1.0.2.0.62.4
F5 BIG-IP Policy Enforcement Manager	=14.1.0.2.0.45.4
F5 BIG-IP Policy Enforcement Manager	=14.1.0.2.0.62.4
F5 BIG-IP WebAccelerator	=14.1.0.2.0.45.4
F5 BIG-IP WebAccelerator	=14.1.0.2.0.62.4
f5 big-ip domain name system	=14.1.0.2.0.45.4
f5 big-ip domain name system	=14.1.0.2.0.62.4

Never miss a vulnerability like this again

Reference Links

https://support.f5.com/csp/article/K91171450

Frequently Asked Questions

What is the vulnerability ID?
The vulnerability ID is CVE-2020-5851.
What is the severity of CVE-2020-5851?
The severity of CVE-2020-5851 is medium.
What systems are affected by CVE-2020-5851?
CVE-2020-5851 affects F5 Big-ip Local Traffic Manager, F5 Big-ip Advanced Firewall Manager, F5 Big-ip Application Acceleration Manager, F5 BIG-IP Analytics, F5 Big-ip Access Policy Manager, F5 BIG-IP Application Security Manager, F5 Big-ip Edge Gateway, F5 Big-ip Fraud Protection Service, F5 Big-ip Global Traffic Manager, F5 Big-ip Link Controller, F5 Big-ip Policy Enforcement Manager, F5 Big-ip Webaccelerator, and F5 Big-ip Domain Name System on specific versions.
What is the impact of CVE-2020-5851?
CVE-2020-5851 allows modifications to specific system components that cannot be detected by the Trusted Platform Module (TPM) system integrity check.
How can I fix CVE-2020-5851?
To fix CVE-2020-5851, apply the necessary engineering hotfixes provided by F5 Networks.

agent/type
agent/last-modified-date
agent/first-publish-date
agent/severity
agent/references
agent/author
agent/description
agent/tags
agent/event
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/f5
canonical/f5 big-ip local traffic manager
version/f5 big-ip local traffic manager/14.1.0.2.0.45.4
version/f5 big-ip local traffic manager/14.1.0.2.0.62.4
canonical/f5 big-ip 2800
canonical/f5 big-ip i10600 firmware
canonical/f5 big-ip i10800 firmware
canonical/f5 big-ip i11600 firmware
canonical/f5 big-ip i11800 firmware
canonical/f5 big-ip i15600 firmware
canonical/f5 big-ip i15800 firmware
canonical/f5 big-ip i2600
canonical/f5 big-ip i4600
canonical/f5 big-ip i4800
canonical/f5 big-ip i5600 firmware
canonical/f5 big-ip i5800 firmware
canonical/f5 big-ip i7600 firmware
canonical/f5 big-ip i7800 firmware
canonical/f5 big-ip i850
canonical/f5 big-ip advanced firewall manager
version/f5 big-ip advanced firewall manager/14.1.0.2.0.45.4
version/f5 big-ip advanced firewall manager/14.1.0.2.0.62.4
canonical/f5 big-ip application acceleration manager
version/f5 big-ip application acceleration manager/14.1.0.2.0.45.4
version/f5 big-ip application acceleration manager/14.1.0.2.0.62.4
canonical/f5 big-ip analytics
version/f5 big-ip analytics/14.1.0.2.0.45.4
version/f5 big-ip analytics/14.1.0.2.0.62.4
canonical/f5 big-ip access policy manager
version/f5 big-ip access policy manager/14.1.0.2.0.45.4
version/f5 big-ip access policy manager/14.1.0.2.0.62.4
canonical/f5 big-ip application security manager
version/f5 big-ip application security manager/14.1.0.2.0.45.4
version/f5 big-ip application security manager/14.1.0.2.0.62.4
canonical/f5 big-ip edge gateway
version/f5 big-ip edge gateway/14.1.0.2.0.45.4
version/f5 big-ip edge gateway/14.1.0.2.0.62.4
canonical/f5 big-ip fraud protection service
version/f5 big-ip fraud protection service/14.1.0.2.0.45.4
version/f5 big-ip fraud protection service/14.1.0.2.0.62.4
canonical/f5 big-ip global traffic manager
version/f5 big-ip global traffic manager/14.1.0.2.0.45.4
version/f5 big-ip global traffic manager/14.1.0.2.0.62.4
canonical/f5 big-ip link controller
version/f5 big-ip link controller/14.1.0.2.0.45.4
version/f5 big-ip link controller/14.1.0.2.0.62.4
canonical/f5 big-ip policy enforcement manager
version/f5 big-ip policy enforcement manager/14.1.0.2.0.45.4
version/f5 big-ip policy enforcement manager/14.1.0.2.0.62.4
canonical/f5 big-ip webaccelerator
version/f5 big-ip webaccelerator/14.1.0.2.0.45.4
version/f5 big-ip webaccelerator/14.1.0.2.0.62.4
canonical/f5 big-ip domain name system
version/f5 big-ip domain name system/14.1.0.2.0.45.4
version/f5 big-ip domain name system/14.1.0.2.0.62.4