← voltar
CVE-2017-6159

CVE-2017-6159

EPSS 1.6%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 1.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
27 out 2017Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 are vulnerable to a denial of service attack when the MPTCP option is enabled on a virtual server. Data plane is vulnerable when using the MPTCP option of a TCP profile. There is no control plane exposure. An attacker may be able to disrupt services by causing TMM to restart hence temporarily failing to process traffic.
Produtos afetados
F5 Networks, Inc. · BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://support.f5.com/csp/article/K10002335http://www.securityfocus.com/bid/101633http://www.securitytracker.com/id/1039669