TLS Traffic Processing Vulnerability with Hardware Cryptographic Acceleration on BIG-IP Platforms with Intel QAT Hardware

TLS Traffic Processing Vulnerability with Hardware Cryptographic Acceleration on BIG-IP Platforms with Intel QAT Hardware

CVE-2020-5872 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

On BIG-IP 14.1.0-14.1.2.3, 14.0.0-14.0.1, 13.1.0-13.1.3.1, and 12.1.0-12.1.4.1, when processing TLS traffic with hardware cryptographic acceleration enabled on platforms with Intel QAT hardware, the Traffic Management Microkernel (TMM) may stop responding and cause a failover event.

Learn more about our Web Application Penetration Testing UK.