CVE-2020-5864

In versions of NGINX Controller prior to 3.2.0, communication between NGINX Controller and NGINX Plus instances skip TLS verification by default.
Configurations

Configuration 1

cpe:2.3:a:f5:nginx_controller:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:nginx_controller:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:nginx_controller:*:*:*:*:*:*:*:*

Information

Published : 2020-04-23 07:15

Updated : 2020-04-30 07:15


NVD link : CVE-2020-5864

Mitre link : CVE-2020-5864

Products Affected
No products.
CWE
CWE-295

Improper Certificate Validation