Skip to main content

Big Ip Carrier Grade Nat CVE-2020-27720

HIGH
2020-12-24 f5sirt@f5.com
7.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Dec 24, 2020 - 16:15 nvd
HIGH 7.5

DescriptionNVD

On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation (PBA) mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may cause the Traffic Management Microkernel (TMM) to restart.

AnalysisAI

On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation (PBA) mode and SP-DAG enabled, and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation (PBA) mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may cause the Traffic Management Microkernel (TMM) to restart. Affected products include: F5 Big-Ip Carrier-Grade Nat, F5 Big-Ip Local Traffic Manager. Version information: version 16.0.0.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2025-20029 HIGH
8.7 Feb 05

F5 BIG-IP contains an authenticated command injection in the iControl REST API and TMOS Shell (tmsh) save command. Authe

CVE-2023-46747 CRITICAL POC
9.8 Oct 26

Undisclosed requests may bypass configuration utility authentication, allowing an attacker with network access to the BI

CVE-2023-46748 HIGH POC
8.8 Oct 26

An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility which may allow an authenticated

CVE-2024-45844 HIGH POC
8.6 Oct 16

BIG-IP monitor functionality may allow an attacker to bypass access control restrictions, regardless of the port lockdow

CVE-2023-41373 CRITICAL
9.9 Oct 10

A directory traversal vulnerability exists in the BIG-IP Configuration Utility that may allow an authenticated attacker

CVE-2025-21087 HIGH
8.9 Feb 05

When Client or Server SSL profiles are configured on a Virtual Server, or DNSSEC signing operations are in use, undisclo

CVE-2025-41433 HIGH
8.7 May 07

When a Session Initiation Protocol (SIP) message routing framework (MRF) application layer gateway (ALG) profile is conf

CVE-2025-21091 HIGH
8.7 Feb 05

When SNMP v1 or v2c are disabled on the BIG-IP, undisclosed requests can cause an increase in memory resource utilizatio

CVE-2025-36504 HIGH
8.7 May 07

When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increase i

CVE-2022-28716 HIGH
8.8 May 05

On 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versi

CVE-2024-41727 HIGH
8.7 Aug 14

In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs) using Intel E810 SR-IOV NI

CVE-2024-39778 HIGH
8.7 Aug 14

When a stateless virtual server is configured on BIG-IP system with a High-Speed Bridge (HSB), undisclosed requests can

Share

CVE-2020-27720 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy