X509 certificate verification was not correctly implemented in the IP Intelligence Subscription and IP Intelligence feed-list features, and thus the remote server’s identity is not properly validated in certain versions of BIG-IP. (CVE-2017-6143)
Impact
Affected BIG-IP systems may fail to properly validate the remote server’s identity. As a result, the IP Intelligence data may potentially be compromised.