CVE-2020-5853
14.01.2020, 17:15
In BIG-IP APM portal access on versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, when backend servers serve HTTP pages with special JavaScript code, this can lead to internal portal access name conflict.
| Vendor | Product | Version |
|---|---|---|
| f5 | big-ip_access_policy_manager | 11.5.2 ≤ 𝑥 ≤ 11.6.5 |
| f5 | big-ip_access_policy_manager | 12.1.0 ≤ 𝑥 ≤ 12.1.5 |
| f5 | big-ip_access_policy_manager | 13.1.0 ≤ 𝑥 ≤ 13.1.3 |
| f5 | big-ip_access_policy_manager | 14.0.0 ≤ 𝑥 ≤ 14.1.2 |
| f5 | big-ip_access_policy_manager | 15.0.0 ≤ 𝑥 ≤ 15.1.0 |
𝑥
= Vulnerable software versions