Main Vulnerability Database SB2020122413

SB2020122413 - Information disclosure in Linux kernel if F5 BIG-IP products

Published: December 24, 2020 Updated: August 15, 2021

Security Bulletin ID SB2020122413

Severity

Medium

Patch available

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Information disclosure

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Use of insufficiently random values (CVE-ID: CVE-2020-25705)

The vulnerability allows a remote attacker to gain access to sensitive information.

A flaw in the way reply ICMP packets are limited in the Linux kernel functionality was found that allows to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypassing source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

https://support.f5.com/csp/article/K09604370

Vulnerable Software

BIG-IP APM: 11.6.1 - 13.1.3.5
BIG-IP SSLO: 11.6.1 - 13.1.3.5
BIG-IP DDHD: 11.6.1 - 13.1.3.5
BIG-IP Advanced WAF: 11.6.1 - 13.1.3.5
BIG-IP PEM: 11.6.1 - 13.1.3.5
BIG-IP Link Controller: 11.6.1 - 13.1.3.5
BIG-IP GTM: 11.6.1 - 13.1.3.5
BIG-IP FPS: 11.6.1 - 13.1.3.5
BIG-IP DNS: 11.6.1 - 13.1.3.5
BIG-IP ASM: 11.6.1 - 13.1.3.5
BIG-IP Analytics: 11.6.1 - 13.1.3.5
BIG-IP AFM: 11.6.1 - 13.1.3.5
BIG-IP AAM: 11.6.1 - 13.1.3.5
BIG-IP LTM: 11.6.1 - 13.1.3.5
BIG-IP: 11.6.1 - 13.1.3.5
BIG-IQ Centralized Management: 5.4.0 - 7.1.0