vulnerability
F5: CVE-2017-6161: K62279530: ConfigSync mcpd vulnerability CVE-2017-6161
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:A/AC:M/Au:N/C:N/I:N/A:P) | Oct 26, 2017 | Jun 17, 2026 | Jun 17, 2026 |
Severity
3
CVSS
(AV:A/AC:M/Au:N/C:N/I:N/A:P)
Published
Oct 26, 2017
Added
Jun 17, 2026
Modified
Jun 17, 2026
Description
When configuration synchronization (ConfigSync) is configured, attackers on adjacent networks may be able to bypass the TLS protections usually used to encrypt and authenticate connections to mcpd.
Solution
f5-bigip-upgrade-latest
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.