CVE-2017-6156F5 Big-ip Domain Name System vulnerability

4 documents4 sources
Severity
6.4MEDIUMNVD
EPSS
0.4%
top 39.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
13
F5 Big-ip Access Policy ManagerF5 Big-ip Advanced Firewall ManagerF5 Big-ip Analytics+10 more
Timeline
PublishedApr 13
Latest updateMay 13

Description

When the F5 BIG-IP 12.1.0-12.1.1, 11.6.0-11.6.1, 11.5.1-11.5.5, or 11.2.1 system is configured with a wildcard IPSec tunnel endpoint, it may allow a remote attacker to disrupt or impersonate the tunnels that have completed phase 1 IPSec negotiations. The attacker must possess the necessary credentials to negotiate the phase 1 of the IPSec exchange to exploit this vulnerability; in many environment this limits the attack surface to other endpoints under the same administration.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:HExploitability: 1.6 | Impact: 4.7

Affected Packages13 packages

NVDf5/big-ip_domain_name_system11.5.111.5.5+3
NVDf5/big-ip_websafe11.5.111.5.5+3
NVDf5/big-ip_analytics11.5.111.5.5+3
NVDf5/big-ip_edge_gateway11.5.111.5.5+3
NVDf5/big-ip_webaccelerator11.5.111.5.5+3

🔴Vulnerability Details

2
GHSA
GHSA-vcc3-5p5p-ggh7: When the F5 BIG-IP 122022-05-13
CVEList
CVE-2017-6156: When the F5 BIG-IP 122018-04-13

📋Vendor Advisories

1
F5
CVE-2017-6156: When the F5 BIG-IP 122018-04-13
CVE-2017-6156 — F5 vulnerability | cvebase