Published: 03/10/2016 Updated: 28/11/2016

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Subscribe to Big-ip Policy Enforcement Manager

Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, 11.6.0 before HF8, 11.6.1 before HF1, 12.0.0 before HF4, and 12.1.0 before HF2, when configured with the HTTP Explicit Proxy functionality or SOCKS profile, allow remote malicious users to modify the system configuration, read system files, and possibly execute arbitrary code via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
f5 big-ip policy enforcement manager 11.6.0
f5 big-ip policy enforcement manager 12.0.0
f5 big-ip policy enforcement manager 12.1.0
f5 big-ip policy enforcement manager 11.6.1
f5 big-ip policy enforcement manager 11.5.2
f5 big-ip policy enforcement manager 11.5.3
f5 big-ip policy enforcement manager 11.5.4
f5 big-ip policy enforcement manager 11.5.0
f5 big-ip policy enforcement manager 11.5.1
f5 big-ip local traffic manager 11.5.3
f5 big-ip local traffic manager 11.5.4
f5 big-ip local traffic manager 12.1.0
f5 big-ip local traffic manager 12.0.0
f5 big-ip local traffic manager 11.6.0
f5 big-ip local traffic manager 11.5.1
f5 big-ip local traffic manager 11.5.2
f5 big-ip local traffic manager 11.6.1
f5 big-ip local traffic manager 11.5.0
f5 big-ip websafe 11.6.0
f5 big-ip websafe 12.0.0
f5 big-ip websafe 12.1.0
f5 big-ip websafe 11.6.1
f5 big-ip link controller 11.6.0
f5 big-ip link controller 12.0.0
f5 big-ip link controller 12.1.0
f5 big-ip link controller 11.6.1
f5 big-ip link controller 11.5.3
f5 big-ip link controller 11.5.4
f5 big-ip link controller 11.5.0
f5 big-ip link controller 11.5.1
f5 big-ip link controller 11.5.2
f5 big-ip application acceleration manager 11.5.3
f5 big-ip application acceleration manager 11.5.2
f5 big-ip application acceleration manager 12.1.0
f5 big-ip application acceleration manager 11.5.1
f5 big-ip application acceleration manager 11.5.0
f5 big-ip application acceleration manager 11.6.0
f5 big-ip application acceleration manager 11.5.4
f5 big-ip application acceleration manager 11.6.1
f5 big-ip application acceleration manager 12.0.0
f5 big-ip access policy manager 11.5.1
f5 big-ip access policy manager 11.5.2
f5 big-ip access policy manager 11.5.3
f5 big-ip access policy manager 11.5.4
f5 big-ip access policy manager 11.6.1
f5 big-ip access policy manager 11.5.0
f5 big-ip access policy manager 12.1.0
f5 big-ip access policy manager 11.6.0
f5 big-ip access policy manager 12.0.0
f5 big-ip advanced firewall manager 11.5.0
f5 big-ip advanced firewall manager 11.5.1
f5 big-ip advanced firewall manager 11.5.2
f5 big-ip advanced firewall manager 11.5.3
f5 big-ip advanced firewall manager 12.1.0
f5 big-ip advanced firewall manager 11.6.1
f5 big-ip advanced firewall manager 12.0.0
f5 big-ip advanced firewall manager 11.5.4
f5 big-ip advanced firewall manager 11.6.0
f5 big-ip application security manager 12.1.0
f5 big-ip application security manager 11.6.1
f5 big-ip application security manager 12.0.0
f5 big-ip application security manager 11.5.0
f5 big-ip application security manager 11.5.1
f5 big-ip application security manager 11.5.4
f5 big-ip application security manager 11.6.0
f5 big-ip application security manager 11.5.2
f5 big-ip application security manager 11.5.3

CWE-284 https://support.f5.com/kb/en-us/solutions/public/k/35/sol35520031.html http://www.securitytracker.com/id/1036928 http://www.securityfocus.com/bid/93325 https://nvd.nist.gov

CVE-2016-5700

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect