CVE-2017-6128

5 documents5 sources

Severity

7.5HIGH

EPSS

0.9%

top 23.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F5 Networks, Inc. Enterprise Manager F5 Networks, Inc. Iworkflow F5 Big-ip Access Policy Manager +20 more

Timeline

PublishedMay 1

Latest updateMay 13

Description

An attacker may be able to cause a denial-of-service (DoS) attack against the sshd component in F5 BIG-IP, Enterprise Manager, BIG-IQ, and iWorkflow.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages23 packages

▶NVDf5/enterprise_manager3.1.1

▶CVEListV5f5_networks,_inc./enterprise_managervaries depending on product - see https://support.f5.com/csp/article/K92140924 for table

▶NVDf5/f5_iworkflow2.0.0

▶CVEListV5f5_networks,_inc./iworkflowvaries depending on product - see https://support.f5.com/csp/article/K92140924 for table

▶NVDf5/big-ip_access_policy_manager10 versions+9

🔴Vulnerability Details

GHSA

GHSA-5ppp-9644-jc48: An attacker may be able to cause a denial-of-service (DoS) attack against the sshd component in F5 BIG-IP, Enterprise Manager, BIG-IQ, and iWorkflow↗2022-05-13

▶

CVEList

CVE-2017-6128: An attacker may be able to cause a denial-of-service (DoS) attack against the sshd component in F5 BIG-IP, Enterprise Manager, BIG-IQ, and iWorkflow↗2017-05-01

▶

📋Vendor Advisories

CVE-2017-6128: An attacker may be able to cause a denial-of-service (DoS) attack against the sshd component in F5 BIG-IP, Enterprise...↗2017-05-01

▶