Lucene search
HistoryOct 27, 2017 - 2:29 p.m.
CVE-2017-6161
CVSS2
2.9
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:M/Au:N/C:N/I:N/A:P
CVSS3
5.3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
5.3
Confidence
High
EPSS
0.005
Percentile
76.9%
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator software version 12.0.0 - 12.1.2, 11.6.0 - 11.6.1, 11.4.0 - 11.5.4, 11.2.1, when ConfigSync is configured, attackers on adjacent networks may be able to bypass the TLS protections usually used to encrypted and authenticate connections to mcpd. This vulnerability may allow remote attackers to cause a denial-of-service (DoS) attack via resource exhaustion.
Affected configurations
Node
f5big-ip_local_traffic_managerRange11.5.0–11.5.4
ORf5big-ip_local_traffic_managerMatch11.2.1
ORf5big-ip_local_traffic_managerMatch11.6.0
ORf5big-ip_local_traffic_managerMatch11.6.1
ORf5big-ip_local_traffic_managerMatch12.0.0
ORf5big-ip_local_traffic_managerMatch12.1.0
ORf5big-ip_local_traffic_managerMatch12.1.1
ORf5big-ip_local_traffic_managerMatch12.1.2
Node
f5big-ip_application_acceleration_managerRange11.5.0–11.5.4
ORf5big-ip_application_acceleration_managerMatch11.2.1
ORf5big-ip_application_acceleration_managerMatch11.6.0
ORf5big-ip_application_acceleration_managerMatch11.6.1
ORf5big-ip_application_acceleration_managerMatch12.0.0
ORf5big-ip_application_acceleration_managerMatch12.1.0
ORf5big-ip_application_acceleration_managerMatch12.1.1
ORf5big-ip_application_acceleration_managerMatch12.1.2
Node
f5big-ip_advanced_firewall_managerRange11.5.0–11.5.4
ORf5big-ip_advanced_firewall_managerMatch11.2.1
ORf5big-ip_advanced_firewall_managerMatch11.6.0
ORf5big-ip_advanced_firewall_managerMatch11.6.1
ORf5big-ip_advanced_firewall_managerMatch12.0.0
ORf5big-ip_advanced_firewall_managerMatch12.1.0
ORf5big-ip_advanced_firewall_managerMatch12.1.1
ORf5big-ip_advanced_firewall_managerMatch12.1.2
Node
f5big-ip_access_policy_managerRange11.5.0–11.5.4
ORf5big-ip_access_policy_managerMatch11.2.1
ORf5big-ip_access_policy_managerMatch11.6.0
ORf5big-ip_access_policy_managerMatch11.6.1
ORf5big-ip_access_policy_managerMatch12.0.0
ORf5big-ip_access_policy_managerMatch12.1.0
ORf5big-ip_access_policy_managerMatch12.1.1
ORf5big-ip_access_policy_managerMatch12.1.2
Node
f5big-ip_application_security_managerRange11.5.0–11.5.4
ORf5big-ip_application_security_managerMatch11.2.1
ORf5big-ip_application_security_managerMatch11.6.0
ORf5big-ip_application_security_managerMatch11.6.1
ORf5big-ip_application_security_managerMatch12.0.0
ORf5big-ip_application_security_managerMatch12.1.0
ORf5big-ip_application_security_managerMatch12.1.1
ORf5big-ip_application_security_managerMatch12.1.2
Node
f5big-ip_link_controllerRange11.5.0–11.5.4
ORf5big-ip_link_controllerMatch11.2.1
ORf5big-ip_link_controllerMatch11.6.0
ORf5big-ip_link_controllerMatch11.6.1
ORf5big-ip_link_controllerMatch12.0.0
ORf5big-ip_link_controllerMatch12.1.0
ORf5big-ip_link_controllerMatch12.1.1
ORf5big-ip_link_controllerMatch12.1.2
Node
f5big-ip_policy_enforcement_managerRange11.5.0–11.5.4
ORf5big-ip_policy_enforcement_managerMatch11.2.1
ORf5big-ip_policy_enforcement_managerMatch11.6.0
ORf5big-ip_policy_enforcement_managerMatch11.6.1
ORf5big-ip_policy_enforcement_managerMatch12.0.0
ORf5big-ip_policy_enforcement_managerMatch12.1.0
ORf5big-ip_policy_enforcement_managerMatch12.1.1
ORf5big-ip_policy_enforcement_managerMatch12.1.2
Node
f5big-ip_domain_name_systemRange11.4.0–11.5.4
ORf5big-ip_domain_name_systemMatch11.2.1
ORf5big-ip_domain_name_systemMatch11.6.0
ORf5big-ip_domain_name_systemMatch11.6.1
ORf5big-ip_domain_name_systemMatch12.0.0
ORf5big-ip_domain_name_systemMatch12.1.0
ORf5big-ip_domain_name_systemMatch12.1.1
ORf5big-ip_domain_name_systemMatch12.1.2
Node
f5big-ip_edge_gatewayMatch11.2.1
ORf5big-ip_edge_gatewayMatch11.4.0
ORf5big-ip_edge_gatewayMatch11.4.1
ORf5big-ip_edge_gatewayMatch11.5.0
ORf5big-ip_edge_gatewayMatch11.5.1
ORf5big-ip_edge_gatewayMatch11.5.2
ORf5big-ip_edge_gatewayMatch11.5.3
ORf5big-ip_edge_gatewayMatch11.5.4
ORf5big-ip_edge_gatewayMatch11.5.5
ORf5big-ip_edge_gatewayMatch11.6.0
ORf5big-ip_edge_gatewayMatch11.6.1
ORf5big-ip_edge_gatewayMatch12.0.0
ORf5big-ip_edge_gatewayMatch12.1.0
ORf5big-ip_edge_gatewayMatch12.1.1
ORf5big-ip_edge_gatewayMatch12.1.2
Node
f5big-ip_global_traffic_managerMatch11.2.1
ORf5big-ip_global_traffic_managerMatch11.4.0
ORf5big-ip_global_traffic_managerMatch11.4.1
ORf5big-ip_global_traffic_managerMatch11.5.0
ORf5big-ip_global_traffic_managerMatch11.5.1
ORf5big-ip_global_traffic_managerMatch11.5.2
ORf5big-ip_global_traffic_managerMatch11.5.3
ORf5big-ip_global_traffic_managerMatch11.5.4
ORf5big-ip_global_traffic_managerMatch11.6.0
ORf5big-ip_global_traffic_managerMatch11.6.1
ORf5big-ip_global_traffic_managerMatch12.0.0
ORf5big-ip_global_traffic_managerMatch12.1.0
ORf5big-ip_global_traffic_managerMatch12.1.1
ORf5big-ip_global_traffic_managerMatch12.1.2
Node
f5big-ip_webacceleratorMatch11.2.1
ORf5big-ip_webacceleratorMatch11.4.0
ORf5big-ip_webacceleratorMatch11.4.1
ORf5big-ip_webacceleratorMatch11.5.0
ORf5big-ip_webacceleratorMatch11.5.1
ORf5big-ip_webacceleratorMatch11.5.2
ORf5big-ip_webacceleratorMatch11.5.3
ORf5big-ip_webacceleratorMatch11.5.4
ORf5big-ip_webacceleratorMatch11.5.5
ORf5big-ip_webacceleratorMatch11.6.0
ORf5big-ip_webacceleratorMatch11.6.1
ORf5big-ip_webacceleratorMatch11.6.2
ORf5big-ip_webacceleratorMatch12.0.0
ORf5big-ip_webacceleratorMatch12.1.0
ORf5big-ip_webacceleratorMatch12.1.1
ORf5big-ip_webacceleratorMatch12.1.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| f5 | big-ip_local_traffic_manager | * | cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* |
| f5 | big-ip_local_traffic_manager | 11.2.1 | cpe:2.3:a:f5:big-ip_local_traffic_manager:11.2.1:*:*:*:*:*:*:* |
| f5 | big-ip_local_traffic_manager | 11.6.0 | cpe:2.3:a:f5:big-ip_local_traffic_manager:11.6.0:*:*:*:*:*:*:* |
| f5 | big-ip_local_traffic_manager | 11.6.1 | cpe:2.3:a:f5:big-ip_local_traffic_manager:11.6.1:*:*:*:*:*:*:* |
| f5 | big-ip_local_traffic_manager | 12.0.0 | cpe:2.3:a:f5:big-ip_local_traffic_manager:12.0.0:*:*:*:*:*:*:* |
| f5 | big-ip_local_traffic_manager | 12.1.0 | cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.0:*:*:*:*:*:*:* |
| f5 | big-ip_local_traffic_manager | 12.1.1 | cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.1:*:*:*:*:*:*:* |
| f5 | big-ip_local_traffic_manager | 12.1.2 | cpe:2.3:a:f5:big-ip_local_traffic_manager:12.1.2:*:*:*:*:*:*:* |
| f5 | big-ip_application_acceleration_manager | * | cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* |
| f5 | big-ip_application_acceleration_manager | 11.2.1 | cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.2.1:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2017-10-27 14:29:00
cve
cve
CVE-2017-6161
2017-10-27 14:29:00
nessus
nessus
F5 Networks BIG-IP : ConfigSync mcpd vulnerability (K62279530)
2017-10-27 00:00:00
f5
f5
K62279530 : ConfigSync mcpd vulnerability CVE-2017-6161
2017-10-26 00:00:00
cvelist
cvelist
CVE-2017-6161
2017-10-27 14:00:00
CVSS2
2.9
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:M/Au:N/C:N/I:N/A:P
CVSS3
5.3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
5.3
Confidence
High
EPSS
0.005
Percentile
76.9%
Related for NVD:CVE-2017-6161