vulnerability

F5 Networks: CVE-2017-0301: K54358225: BIG-IP APM Portal Access vulnerability CVE-2017-0301

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:A/AC:H/Au:S/C:P/I:P/A:P)	Dec 19, 2017	Jan 31, 2018	Aug 23, 2024

Severity

CVSS

(AV:A/AC:H/Au:S/C:P/I:P/A:P)

Published

Dec 19, 2017

Added

Jan 31, 2018

Modified

Aug 23, 2024

Description

In F5 BIG-IP APM software versions 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 and 12.1.2 BIG-IP APM portal access requests do not return the intended resources in some cases. This may allow access to internal BIG-IP APM resources, however the application resources and backend servers are unaffected.

Solution

f5-big-ip-upgrade-latest

References

CVE-2017-0301
https://attackerkb.com/topics/CVE-2017-0301
URL-https://my.f5.com/manage/s/article/K54358225

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today