IPSec Tunnel Key Length Mismatch Vulnerability

IPSec Tunnel Key Length Mismatch Vulnerability

CVE-2020-5938 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

On BIG-IP 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when negotiating IPSec tunnels with configured, authenticated peers, the peer may negotiate a different key length than the BIG-IP configuration would otherwise allow.

Learn more about our Web Application Penetration Testing UK.