CVE-2017-6144 - OpenCVE

In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file via HTTPS, the server's certificate is not verified. Attackers in a privileged network position may be able to launch a man-in-the-middle attack against these connections. TAC databases are used in BIG-IP PEM for Device Type and OS (DTOS) and Tethering detection. Customers not using BIG-IP PEM, not configuring downloads of TAC database files, or not using HTTP for that download are not affected.

No CVSS v3.1

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:P/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
F5	Big-ip Policy Enforcement Manager

Configuration 1 [-]

OR	cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.0:::::::*
	cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.1:::::::*
	cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.2:::::::*

References

Link	Resource
https://support.f5.com/csp/article/K81601350	Mitigation Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: f5

Published: 2017-07-12T00:00:00

Updated: 2017-10-20T14:57:01

Reserved: 2017-02-21T00:00:00

Link: CVE-2017-6144

JSON object: View

NVD Information

Status : Analyzed

Published: 2017-10-20T15:29:00.427

Modified: 2017-11-15T16:22:34.640

Link: CVE-2017-6144

JSON object: View

Redhat Information

No data.

CWE

CWE-295

{"containers": {"cna": {"affected": [{"product": "F5 BIG-IP PEM", "vendor": "F5 Networks, Inc.", "versions": [{"status": "affected", "version": "12.1.0 through 12.1.2"}]}], "datePublic": "2017-07-12T00:00:00", "descriptions": [{"lang": "en", "value": "In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file via HTTPS, the server's certificate is not verified. Attackers in a privileged network position may be able to launch a man-in-the-middle attack against these connections. TAC databases are used in BIG-IP PEM for Device Type and OS (DTOS) and Tethering detection. Customers not using BIG-IP PEM, not configuring downloads of TAC database files, or not using HTTP for that download are not affected."}], "problemTypes": [{"descriptions": [{"description": "Certificate verification vulnerability", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-20T14:57:01", "orgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab", "shortName": "f5"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://support.f5.com/csp/article/K81601350"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "f5sirt@f5.com", "DATE_PUBLIC": "2017-07-12T00:00:00", "ID": "CVE-2017-6144", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "F5 BIG-IP PEM", "version": {"version_data": [{"version_value": "12.1.0 through 12.1.2"}]}}]}, "vendor_name": "F5 Networks, Inc."}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file via HTTPS, the server's certificate is not verified. Attackers in a privileged network position may be able to launch a man-in-the-middle attack against these connections. TAC databases are used in BIG-IP PEM for Device Type and OS (DTOS) and Tethering detection. Customers not using BIG-IP PEM, not configuring downloads of TAC database files, or not using HTTP for that download are not affected."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Certificate verification vulnerability"}]}]}, "references": {"reference_data": [{"name": "https://support.f5.com/csp/article/K81601350", "refsource": "CONFIRM", "url": "https://support.f5.com/csp/article/K81601350"}]}}}}, "cveMetadata": {"assignerOrgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab", "assignerShortName": "f5", "cveId": "CVE-2017-6144", "datePublished": "2017-07-12T00:00:00", "dateReserved": "2017-02-21T00:00:00", "dateUpdated": "2017-10-20T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "64273A2C-E5A1-4605-92DD-EBECC7F051D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "E60CA151-1C3A-45B3-B939-E6F80063C595", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:12.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "58BAD5A9-9C67-4056-9344-07C8C42C8E88", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file via HTTPS, the server's certificate is not verified. Attackers in a privileged network position may be able to launch a man-in-the-middle attack against these connections. TAC databases are used in BIG-IP PEM for Device Type and OS (DTOS) and Tethering detection. Customers not using BIG-IP PEM, not configuring downloads of TAC database files, or not using HTTP for that download are not affected."}, {"lang": "es", "value": "En F5 BIG-IP PEM 12.1.0 hasta la versi\u00f3n 12.1.2, al descargar el archivo de base de datos Type Allocation Code (TAC) mediante HTTPS, el certificado del servidor no se verifica. Atacantes en una posici\u00f3n privilegiada de la red podr\u00edan ser capaces de lanzar un ataque Man-in-the-Middle (MitM) contra estas conexiones. Las bases de datos TAC se emplean en BIG-IP PEM para la detecci\u00f3n de tipo de dispositivo y sistema operativo (DTOS) y Tethering. Los clientes que no emplean BIG-IP PEM, no configuran descargas de archivos de base de datos TAC o que no empleen HTTP para esa descarga no est\u00e1n afectados."}], "id": "CVE-2017-6144", "lastModified": "2017-11-15T16:22:34.640", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-10-20T15:29:00.427", "references": [{"source": "f5sirt@f5.com", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://support.f5.com/csp/article/K81601350"}], "sourceIdentifier": "f5sirt@f5.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-295"}], "source": "nvd@nist.gov", "type": "Primary"}]}