CVE-2020-5881
HIGHF5 BIG-IP Virtual Edition 13.1.0-13.1.3.3, 14.1.0-14.1.2.3, 15.0.0-15.1.0.1 DoS via NDAL Interface
Title source: llmDescription
On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when the BIG-IP Virtual Edition (VE) is configured with VLAN groups and there are devices configured with OSPF connected to it, the Network Device Abstraction Layer (NDAL) Interfaces can lock up and in turn disrupting the communication between the mcpd and tmm processes.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://support.f5.com/csp/article/K03386032
Scores
CVSS v3
7.5
EPSS
0.0065
EPSS Percentile
71.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (11)
f5/big-ip_access_policy_manager
13.1.0 - 13.1.3.3
f5/big-ip_advanced_firewall_manager
13.1.0 - 13.1.3.3
f5/big-ip_analytics
13.1.0 - 13.1.3.3
f5/big-ip_application_acceleration_manager
13.1.0 - 13.1.3.3
f5/big-ip_application_security_manager
13.1.0 - 13.1.3.3
f5/big-ip_domain_name_system
13.1.0 - 13.1.3.3
f5/big-ip_fraud_protection_service
13.1.0 - 13.1.3.3
f5/big-ip_global_traffic_manager
13.1.0 - 13.1.3.3
f5/big-ip_link_controller
13.1.0 - 13.1.3.3
f5/big-ip_local_traffic_manager
13.1.0 - 13.1.3.3
... and 1 more
Published
Apr 30, 2020
Tracked Since
Feb 18, 2026