Lucene search
F5CVELIST:CVE-2017-6161HistoryOct 27, 2017 - 2:00 p.m.
CVE-2017-6161
2017-10-2714:00:00
f5
www.cve.org
3
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator software version 12.0.0 - 12.1.2, 11.6.0 - 11.6.1, 11.4.0 - 11.5.4, 11.2.1, when ConfigSync is configured, attackers on adjacent networks may be able to bypass the TLS protections usually used to encrypted and authenticate connections to mcpd. This vulnerability may allow remote attackers to cause a denial-of-service (DoS) attack via resource exhaustion.
CNA Affected
[
{
"product": "BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator",
"vendor": "F5 Networks, Inc.",
"versions": [
{
"status": "affected",
"version": "12.0.0 - 12.1.2"
},
{
"status": "affected",
"version": "11.6.0 â"
},
{
"status": "affected",
"version": "€"
},
{
"status": "affected",
"version": "\" 11.6.1"
},
{
"status": "affected",
"version": "11.4.0 â"
},
{
"status": "affected",
"version": "\" 11.5.4"
},
{
"status": "affected",
"version": "11.2.1"
}
]
}
]Related
prion
prion
Code injection
2017-10-27 14:29:00
nvd
nvd
CVE-2017-6161
2017-10-27 14:29:00
cve
cve
CVE-2017-6161
2017-10-27 14:29:00
f5
f5
K62279530 : ConfigSync mcpd vulnerability CVE-2017-6161
2017-10-26 00:00:00
nessus
nessus
F5 Networks BIG-IP : ConfigSync mcpd vulnerability (K62279530)
2017-10-27 00:00:00