CVE-2017-0305
CVE-2017-0305
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 3.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
06 abr 2017Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that may allow modification of the BIG-IP system configuration, extraction of sensitive system files, and possible remote command execution on the system when deployed using the Explicit Proxy feature plus SNAT Auto Map option for egress traffic.
Productos afectados
F5 Networks · SSL Intercept iApp versionReferencias
https://support.f5.com/csp/article/K53244431