CVE-2017-6158
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
13/04/2018
Last modified:
03/10/2019
Description
In F5 BIG-IP 12.0.0-12.1.2, 11.6.0-11.6.1, 11.5.1-11.5.5, or 11.2.1 there is a vulnerability in TMM related to handling of invalid IP addresses.
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM
Base Score 2.0
6.40
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* | 11.5.1 (including) | 11.5.5 (including) |
| cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* | 11.6.0 (including) | 11.6.1 (including) |
| cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:* | 12.0.0 (including) | 12.1.2 (including) |
| cpe:2.3:a:f5:big-ip_local_traffic_manager:11.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* | 11.5.1 (including) | 11.5.5 (including) |
| cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* | 11.6.0 (including) | 11.6.1 (including) |
| cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:* | 12.0.0 (including) | 12.1.2 (including) |
| cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* | 11.5.1 (including) | 11.5.5 (including) |
| cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* | 11.6.0 (including) | 11.6.1 (including) |
| cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* | 12.0.0 (including) | 12.1.2 (including) |
| cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* | 11.5.1 (including) | 11.5.5 (including) |
| cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* | 11.6.0 (including) | 11.6.1 (including) |
| cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* | 12.0.0 (including) | 12.1.2 (including) |
To consult the complete list of CPE names with products and versions, see this page