{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T19:48:57.969","vulnerabilities":[{"cve":{"id":"CVE-2020-5943","sourceIdentifier":"f5sirt@f5.com","published":"2020-11-05T20:15:17.753","lastModified":"2024-11-21T05:34:52.570","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In versions 14.1.0-14.1.0.1 and 14.1.2.5-14.1.2.7, when a BIG-IP object is created or listed through the REST interface, the protected fields are obfuscated in the REST response, not protected via a SecureVault cryptogram as TMSH does. One example of protected fields is the GTM monitor password."},{"lang":"es","value":"En las versiones 14.1.0-14.1.0.1 y 14.1.2.5-14.1.2.7, cuando un objeto de BIG-IP es creado o listado por medio de la interfaz REST, los campos protegidos están ofuscados en la respuesta de REST, no se protegen por medio de un criptograma SecureVault como TMSH lo hace. Un ejemplo de campos protegidos es la contraseña del monitor GTM"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-327"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"F0B9CC06-F067-4A52-A86F-5E087FD15F6E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"CEE1F0CD-8F25-4E32-8F36-C5121C1980DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"A3BA7CB6-008A-4380-8CA5-6C13D4068B1D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"7DE6875B-EFE6-43B3-87D0-A8CDD49F378F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"8AB5854A-499A-45B4-9C5D-53EAE2CF5F07"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"2ACFC6A8-92E9-4346-A065-ED0968B5C4AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"E4CC740B-2776-4CE7-A26C-AD8A4FD88420"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"6F4FC4FC-3E77-4B8E-B2F7-1E234E7D89D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"372446BA-968E-4DB1-974D-C792AD63D810"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"25F94F9D-189D-4A4E-99E7-6B3AD64FBE30"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"17215C8C-26AB-4F7B-A082-F3D58D5FB1F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"2893DE59-EF06-4B9E-ABE7-E85E68CC8F54"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"957B5A61-0297-41BA-8CEF-C673A1350341"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"B24C76BB-9CC8-4DA4-95B0-657878E69390"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"78E7ACFD-2D02-4C1E-B0EC-1D6B19DCFC52"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"58A501D0-28D1-4290-9EF4-057B6971A0D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"793FC152-00AD-4B1A-A6DA-6FCB25E043AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"6456F292-2704-401E-A4B0-A3AF0AFA02FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"AB90FD02-9054-46B1-80C4-EA1F5708C266"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"DAD1E8D9-3031-4F6F-94FC-E99853929EB3"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"43D544EE-2DE4-43E2-A5F0-EDAFE4392615"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"75CDFE82-EFFB-40B4-9D35-4E3E6403942F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"16D0CB44-0D75-4984-83AE-A05648A29B23"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"3C725353-3E04-46E4-8BD5-9A34A8D5B54B"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"A3194AC1-49A5-4D7B-BF65-41EFA6E1C376"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"3BCAD173-230B-4459-A318-99ECE6CF94A2"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.0","versionEndIncluding":"14.1.0.1","matchCriteriaId":"58825A3A-62A1-4A2A-BE02-03063515B0C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*","versionStartIncluding":"14.1.2.5","versionEndIncluding":"14.1.2.7","matchCriteriaId":"17E260EB-B9E0-4343-85D3-721B54093130"}]}]}],"references":[{"url":"https://support.f5.com/csp/article/K20059815","source":"f5sirt@f5.com","tags":["Vendor Advisory"]},{"url":"https://support.f5.com/csp/article/K20059815","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}