CVE-2020-27722
MEDIUM WAF: Medium
CVSS 6.5
Published: 2020-12-24
CWE-400
In BIG-IP APM versions 15.0.0-15.0.1.3, 14.1.0-14.1.3, and 13.1.0-13.1.3.4, under certain conditions, the VDI plugin does not observe plugin flow-control protocol causing excessive resource consumption.
WAF Coverage Analysis
Uncontrolled Resource Consumption
Medium WAF Coverage
OWASP: A05:2021 Security Misconfiguration
912xxx - DOS Protection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| f5 | big-ip_access_policy_manager | 13.1.0 - 13.1.3.5 |
| f5 | big-ip_access_policy_manager | 14.1.0 - 14.1.3.1 |
| f5 | big-ip_access_policy_manager | 15.0.0 - 15.0.1.4 |
References
- support.f5.com (Vendor Advisory)