CVE-2017-6142
N/A
N/A
Summary
X509 certificate verification was not correctly implemented in the early access "user id" feature in the F5 BIG-IP Advanced Firewall Manager versions 13.0.0, 12.1.0-12.1.2, and 11.6.0-11.6.2, and thus did not properly validate the remote server's identity on certain versions of BIG-IP.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| F5 Networks, Inc. | BIG-IP AFM | 13.0.0 | affected |
| F5 Networks, Inc. | BIG-IP AFM | 12.1.0 - 12.1.2 | affected |
| F5 Networks, Inc. | BIG-IP AFM | 11.6.0 - 11.6.2 | affected |
Weaknesses
- Failed certificate validation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.