CVE-2017-0305

Summary

F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that may allow modification of the BIG-IP system configuration, extraction of sensitive system files, and possible remote command execution on the system when deployed using the Explicit Proxy feature plus SNAT Auto Map option for egress traffic.

Affected Software

VendorProductVersion RangeStatus
F5 NetworksSSL Intercept iApp version1.5.0 - 1.5.7affected

Weaknesses

  • remote command execution

ADP Enrichment

CVE Program Container

Additional References

References