vulnerability

F5 Networks: CVE-2017-6143: K11464209: IP Intelligence Feed List vulnerability CVE-2017-6143

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:M/Au:N/C:P/I:P/A:N)	Apr 12, 2018	Apr 25, 2018	Aug 23, 2024

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:N)

Published

Apr 12, 2018

Added

Apr 25, 2018

Modified

Aug 23, 2024

Description

X509 certificate verification was not correctly implemented in the IP Intelligence Subscription and IP Intelligence feed-list features, and thus the remote server's identity is not properly validated in F5 BIG-IP 12.0.0-12.1.2, 11.6.0-11.6.2, or 11.5.0-11.5.5.

Solution

f5-big-ip-upgrade-latest

References

CVE-2017-6143
https://attackerkb.com/topics/CVE-2017-6143
URL-https://my.f5.com/manage/s/article/K11464209

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today