{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[],"affected_systems_content":"","content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n\n## Contournement provisoire\n\n-   BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS,\n    GTM, Link Controller, PEM, WebAccelerator) versions 14.x ant\u00e9rieures\n    \u00e0 14.1.0.5 et 14.0.0.6\n-   BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS,\n    GTM, Link Controller, PEM, WebAccelerator) versions 13.x ant\u00e9rieures\n    \u00e0 13.1.1.5\n-   BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS,\n    GTM, Link Controller, PEM, WebAccelerator) versions 12.x ant\u00e9rieures\n    \u00e0 12.1.5\n-   BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS,\n    GTM, Link Controller, PEM, WebAccelerator) versions 11.x ant\u00e9rieures\n    \u00e0 11.5.9 et 11.6.4\n","cves":[{"name":"CVE-2020-6621","url":"https://www.cve.org/CVERecord?id=CVE-2020-6621"}],"links":[],"reference":"CERTFR-2020-AVI-768","revisions":[{"description":"Version initiale","revision_date":"2020-11-20T00:00:00.000000"}],"risks":[{"description":"Contournement de la politique de s\u00e9curit\u00e9"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans F5 BIG-IP. Elles\npermettent \u00e0 un attaquant de provoquer un contournement de la politique\nde s\u00e9curit\u00e9.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans F5 BIG-IP","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 F5 K20541896 du 19 novembre 2020","url":"https://support.f5.com/csp/article/K20541896"}]}