CVE-2020-5865
Description
In versions prior to 3.3.0, the NGINX Controller is configured to communicate with its Postgres database server over unencrypted channels, making the communicated data vulnerable to interception via man-in-the-middle (MiTM) attacks.
CWE
- (none)
Affected
- n/a / NGINX Controller — v=< 3.3.0 [affected]
CVSS
- (none)
References
- https://support.f5.com/csp/article/K21009022 x_refsource_CONFIRM
- https://security.netapp.com/advisory/ntap-20200430-0005/ x_refsource_CONFIRM
Source
cvelistV5-main/cves/2020/5xxx/CVE-2020-5865.json