F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that may allow modification of the BIG-IP system configuration, extraction of sensitive system files, and possible remote command execution on the system when deployed using the Explicit Proxy feature plus SNAT Auto Map option for egress traffic.
References
Link | Resource |
---|---|
https://support.f5.com/csp/article/K53244431 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: f5
Published: 2017-04-06T14:00:00
Updated: 2017-04-06T13:57:01
Reserved: 2016-11-09T00:00:00
Link: CVE-2017-0305
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-04-06T14:59:00.193
Modified: 2019-10-03T00:03:26.223
Link: CVE-2017-0305
JSON object: View
Redhat Information
No data.
CWE