CVE-2020-5902

Lou_van_Dyk · September 2020

CVE-2020-5902 seems to be a serious vulnerability. Anything we need to do on our VPN configurations or Firebox upgrades to prevent this?

Ref: https://us-cert.cisa.gov/ncas/alerts/aa20-259a

james.carson · September 2020

Hi @Lou_van_Dyk

CVE-2020-5902 is for a product of F5 networks. I'd suggest following whatever guidance F5 provides related to patching that product.

The article also links an issue related to Citrix Netscaler, for that exploit, I'd suggest checking with Citrix to ensure that your environment is patched.

It appears that patches have been developed for most of the issues in that bulletin, so patching them would be the most effective way to mitigate the issue.

Lou_van_Dyk · September 2020

Thank you @James_Carson
I appreciate your response.

CVE-2020-5902

Best Answer

Answers