In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized.
References
Link | Resource |
---|---|
https://support.f5.com/csp/article/K59209532 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: f5
Published: 2020-07-02T12:25:11
Updated: 2020-07-02T12:25:11
Reserved: 2020-01-06T00:00:00
Link: CVE-2020-5910
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-07-02T13:15:10.373
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-5910
JSON object: View
Redhat Information
No data.
CWE