CVE-2020-5855 Information

Description

When the Windows Logon Integration feature is configured for all versions of BIG-IP Edge Client for Windows unauthorized users who have physical access to an authorized user’s machine can get shell access under unprivileged user.

CVSS Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Reference

https://support.f5.com/csp/article/K55102004

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

LOW

Base Score

LOW

Base Severity

4.3