Vulnerability in F5 SSL Intercept iApp Allows Unauthenticated Remote Attack and System Configuration Modification

Vulnerability in F5 SSL Intercept iApp Allows Unauthenticated Remote Attack and System Configuration Modification

CVE-2017-0305 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that may allow modification of the BIG-IP system configuration, extraction of sensitive system files, and possible remote command execution on the system when deployed using the Explicit Proxy feature plus SNAT Auto Map option for egress traffic.

Learn more about our Web Application Penetration Testing UK.