Arbitrary File Upload and Authorization Bypass Vulnerability in BIG-IP 15.0.0-15.0.1.3 and 14.1.0-14.1.2.3

Arbitrary File Upload and Authorization Bypass Vulnerability in BIG-IP 15.0.0-15.0.1.3 and 14.1.0-14.1.2.3

CVE-2020-5880 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Om BIG-IP 15.0.0-15.0.1.3 and 14.1.0-14.1.2.3, the restjavad process may expose a way for attackers to upload arbitrary files on the BIG-IP system, bypassing the authorization system. Resulting error messages may also reveal internal paths of the server.

Learn more about our Cis Benchmark Audit For Server Software.