CVE-2020-5851
14.01.2020, 16:15
On impacted versions and platforms the Trusted Platform Module (TPM) system integrity check cannot detect modifications to specific system components. This issue only impacts specific engineering hotfixes and platforms. NOTE: This vulnerability does not affect any of the BIG-IP major, minor or maintenance releases you obtained from downloads.f5.com. The affected Engineering Hotfix builds are as follows: Hotfix-BIGIP-14.1.0.2.0.45.4-ENG Hotfix-BIGIP-14.1.0.2.0.62.4-ENGEnginsight
| Vendor | Product | Version |
|---|---|---|
| f5 | big-ip_local_traffic_manager | 14.1.0.2.0.45.4 |
| f5 | big-ip_local_traffic_manager | 14.1.0.2.0.62.4 |
| f5 | big-ip_advanced_firewall_manager | 14.1.0.2.0.45.4 |
| f5 | big-ip_advanced_firewall_manager | 14.1.0.2.0.62.4 |
| f5 | big-ip_application_acceleration_manager | 14.1.0.2.0.45.4 |
| f5 | big-ip_application_acceleration_manager | 14.1.0.2.0.62.4 |
| f5 | big-ip_analytics | 14.1.0.2.0.45.4 |
| f5 | big-ip_analytics | 14.1.0.2.0.62.4 |
| f5 | big-ip_access_policy_manager | 14.1.0.2.0.45.4 |
| f5 | big-ip_access_policy_manager | 14.1.0.2.0.62.4 |
| f5 | big-ip_application_security_manager | 14.1.0.2.0.45.4 |
| f5 | big-ip_application_security_manager | 14.1.0.2.0.62.4 |
| f5 | big-ip_edge_gateway | 14.1.0.2.0.45.4 |
| f5 | big-ip_edge_gateway | 14.1.0.2.0.62.4 |
| f5 | big-ip_fraud_protection_service | 14.1.0.2.0.45.4 |
| f5 | big-ip_fraud_protection_service | 14.1.0.2.0.62.4 |
| f5 | big-ip_global_traffic_manager | 14.1.0.2.0.45.4 |
| f5 | big-ip_global_traffic_manager | 14.1.0.2.0.62.4 |
| f5 | big-ip_link_controller | 14.1.0.2.0.45.4 |
| f5 | big-ip_link_controller | 14.1.0.2.0.62.4 |
| f5 | big-ip_policy_enforcement_manager | 14.1.0.2.0.45.4 |
| f5 | big-ip_policy_enforcement_manager | 14.1.0.2.0.62.4 |
| f5 | big-ip_webaccelerator | 14.1.0.2.0.45.4 |
| f5 | big-ip_webaccelerator | 14.1.0.2.0.62.4 |
| f5 | big-ip_domain_name_system | 14.1.0.2.0.45.4 |
| f5 | big-ip_domain_name_system | 14.1.0.2.0.62.4 |
𝑥
= Vulnerable software versions