Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.3
CVSSv3

CVE-2017-6161

Published: 27/10/2017 Updated: 16/11/2017
CVSS v2 Base Score: 2.9 | Impact Score: 2.9 | Exploitability Score: 5.5
CVSS v3 Base Score: 5.3 | Impact Score: 3.6 | Exploitability Score: 1.6
VMScore: 258
Vector: AV:A/AC:M/Au:N/C:N/I:N/A:P
Subscribe to F5

Vulnerability Summary

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator software version 12.0.0 - 12.1.2, 11.6.0 - 11.6.1, 11.4.0 - 11.5.4, 11.2.1, when ConfigSync is configured, attackers on adjacent networks may be able to bypass the TLS protections usually used to encrypted and authenticate connections to mcpd. This vulnerability may allow remote malicious users to cause a denial-of-service (DoS) attack via resource exhaustion.

Vulnerable Product Search on Vulmon Subscribe to Product

f5 big-ip local traffic manager 11.2.1

f5 big-ip local traffic manager

f5 big-ip local traffic manager 11.6.0

f5 big-ip local traffic manager 11.6.1

f5 big-ip local traffic manager 12.1.0

f5 big-ip local traffic manager 12.1.2

f5 big-ip local traffic manager 12.0.0

f5 big-ip local traffic manager 12.1.1

f5 big-ip application acceleration manager 11.2.1

f5 big-ip application acceleration manager

f5 big-ip application acceleration manager 11.6.0

f5 big-ip application acceleration manager 11.6.1

f5 big-ip application acceleration manager 12.1.0

f5 big-ip application acceleration manager 12.1.2

f5 big-ip application acceleration manager 12.0.0

f5 big-ip application acceleration manager 12.1.1

f5 big-ip advanced firewall manager 12.1.2

f5 big-ip advanced firewall manager 11.2.1

f5 big-ip advanced firewall manager

f5 big-ip advanced firewall manager 11.6.0

f5 big-ip advanced firewall manager 11.6.1

f5 big-ip advanced firewall manager 12.1.0

f5 big-ip advanced firewall manager 12.0.0

f5 big-ip advanced firewall manager 12.1.1

f5 big-ip access policy manager 11.2.1

f5 big-ip access policy manager

f5 big-ip access policy manager 12.1.2

f5 big-ip access policy manager 11.6.1

f5 big-ip access policy manager 12.1.0

f5 big-ip access policy manager 11.6.0

f5 big-ip access policy manager 12.0.0

f5 big-ip access policy manager 12.1.1

f5 big-ip application security manager 12.1.1

f5 big-ip application security manager 12.1.2

f5 big-ip application security manager 11.2.1

f5 big-ip application security manager

f5 big-ip application security manager 11.6.1

f5 big-ip application security manager 12.1.0

f5 big-ip application security manager 11.6.0

f5 big-ip application security manager 12.0.0

f5 big-ip link controller 11.2.1

f5 big-ip link controller 12.1.0

f5 big-ip link controller 12.1.1

f5 big-ip link controller 12.1.2

f5 big-ip link controller

f5 big-ip link controller 11.6.1

f5 big-ip link controller 11.6.0

f5 big-ip link controller 12.0.0

f5 big-ip policy enforcement manager 12.1.0

f5 big-ip policy enforcement manager 12.1.1

f5 big-ip policy enforcement manager 12.1.2

f5 big-ip policy enforcement manager

f5 big-ip policy enforcement manager 11.6.1

f5 big-ip policy enforcement manager 11.2.1

f5 big-ip policy enforcement manager 11.6.0

f5 big-ip policy enforcement manager 12.0.0

f5 big-ip domain name system 12.0.0

f5 big-ip domain name system 12.1.0

f5 big-ip domain name system 12.1.1

f5 big-ip domain name system 12.1.2

f5 big-ip domain name system

f5 big-ip domain name system 11.6.1

f5 big-ip domain name system 11.2.1

f5 big-ip domain name system 11.6.0

f5 big-ip edge gateway 12.0.0

f5 big-ip edge gateway 11.6.1

f5 big-ip edge gateway 11.6.0

f5 big-ip edge gateway 11.5.5

f5 big-ip edge gateway 11.5.4

f5 big-ip edge gateway 11.4.1

f5 big-ip edge gateway 11.4.0

f5 big-ip edge gateway 11.2.1

f5 big-ip edge gateway 12.1.1

f5 big-ip edge gateway 11.5.3

f5 big-ip edge gateway 11.5.1

f5 big-ip edge gateway 12.1.2

f5 big-ip edge gateway 12.1.0

f5 big-ip edge gateway 11.5.2

f5 big-ip edge gateway 11.5.0

f5 big-ip global traffic manager 11.6.1

f5 big-ip global traffic manager 11.2.1

f5 big-ip global traffic manager 11.4.0

f5 big-ip global traffic manager 11.4.1

f5 big-ip global traffic manager 11.5.4

f5 big-ip global traffic manager 11.6.0

f5 big-ip global traffic manager 12.1.1

f5 big-ip global traffic manager 12.0.0

f5 big-ip global traffic manager 11.5.0

f5 big-ip global traffic manager 11.5.2

f5 big-ip global traffic manager 12.1.2

f5 big-ip global traffic manager 12.1.0

f5 big-ip global traffic manager 11.5.1

f5 big-ip global traffic manager 11.5.3

f5 big-ip webaccelerator 11.6.0

f5 big-ip webaccelerator 11.5.5

f5 big-ip webaccelerator 11.5.4

f5 big-ip webaccelerator 11.5.3

f5 big-ip webaccelerator 12.1.2

f5 big-ip webaccelerator 12.1.1

f5 big-ip webaccelerator 11.4.0

f5 big-ip webaccelerator 11.2.1

f5 big-ip webaccelerator 12.1.0

f5 big-ip webaccelerator 11.6.2

f5 big-ip webaccelerator 11.5.1

f5 big-ip webaccelerator 11.4.1

f5 big-ip webaccelerator 12.0.0

f5 big-ip webaccelerator 11.6.1

f5 big-ip webaccelerator 11.5.2

f5 big-ip webaccelerator 11.5.0

References

CWE-400https://support.f5.com/csp/article/K62279530http://www.securitytracker.com/id/1039676http://www.securitytracker.com/id/1039675http://www.securityfocus.com/bid/101636https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook