K02692210: BIG-IP virtual server with HTTP Explicit Proxy and/or SOCKS vulnerability CVE-2017-6157

🗓️ 21 Feb 2023 20:00:31Reported by f5Type

f5🔗 my.f5.com👁 156 Views

BIG-IP virtual server HTTP Proxy and SOCKS vulnerability CVE-2017-615

Reporter	Title	Published	Views	Family All 7
CNVD	Multiple F5 Products Arbitrary Command Execution Vulnerabilities	30 Oct 201700:00	–	cnvd
CVE	CVE-2017-6157	27 Oct 201714:00	–	cve
Cvelist	CVE-2017-6157	27 Oct 201714:00	–	cvelist
EUVD	EUVD-2017-15222	7 Oct 202500:30	–	euvd
Tenable Nessus	F5 Networks BIG-IP : BIG-IP virtual server with HTTP Explicit Proxy and/or SOCKS vulnerability (K02692210)	27 Oct 201700:00	–	nessus
NVD	CVE-2017-6157	27 Oct 201714:29	–	nvd
Prion	Command injection	27 Oct 201714:29	–	prion

Vulners

Node

f5 big-ip_ltmRange12.0.0–12.1.1

OR

f5 big-ip_ltmRange11.6.0–11.6.1

OR

f5 big-ip_ltmRange11.5.0–11.5.4

OR

f5 big-ip_aamRange12.0.0–12.1.1

OR

f5 big-ip_aamRange11.6.0–11.6.1

OR

f5 big-ip_aamRange11.5.0–11.5.4

OR

f5 big-ip_afmRange12.0.0–12.1.1

OR

f5 big-ip_afmRange11.6.0–11.6.1

OR

f5 big-ip_afmRange11.5.0–11.5.4

OR

f5 big-ip_apmRange12.0.0–12.1.1

OR

f5 big-ip_apmRange11.6.0–11.6.1

OR

f5 big-ip_apmRange11.5.0–11.5.4

OR

f5 big-ip_asmRange12.0.0–12.1.1

OR

f5 big-ip_asmRange11.6.0–11.6.1

OR

f5 big-ip_asmRange11.5.0–11.5.4

OR

f5 big-ip_link_controllerRange12.0.0–12.1.1

OR

f5 big-ip_link_controllerRange11.6.0–11.6.1

OR

f5 big-ip_link_controllerRange11.5.0–11.5.4

OR

f5 big-ip_pemRange12.0.0–12.1.1

OR

f5 big-ip_pemRange11.6.0–11.6.1

OR

f5 big-ip_pemRange11.5.0–11.5.4

OR

f5 big-ip_websafeRange12.0.0–12.1.1

OR

f5 big-ip_websafeRange11.6.0–11.6.1

21 Feb 2023 20:00Current

8.9High risk

Vulners AI Score8.9

CVSS 26.8

CVSS 38.1

EPSS0.06882

big-ip http proxy socks vulnerability cve-2017-6157 remote attack system configuration sensitive system files remote command execution