PT-2018-8294 · F5 · F5 Big-Ip
Published
2018-04-13
·
Updated
2018-05-21
·
CVE-2017-6143
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
F5 BIG-IP versions 11.5.0 through 11.5.5
F5 BIG-IP versions 11.6.0 through 11.6.2
F5 BIG-IP versions 12.0.0 through 12.1.2
Description
The issue arises from incorrect implementation of X509 certificate verification in the IP Intelligence Subscription and IP Intelligence feed-list features. This results in the remote server's identity not being properly validated.
Recommendations
For F5 BIG-IP versions 11.5.0 through 11.5.5, update the implementation of X509 certificate verification to properly validate the remote server's identity.
For F5 BIG-IP versions 11.6.0 through 11.6.2, update the implementation of X509 certificate verification to properly validate the remote server's identity.
For F5 BIG-IP versions 12.0.0 through 12.1.2, update the implementation of X509 certificate verification to properly validate the remote server's identity.
Fix
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
F5 Big-Ip