Vulnerability Details CVE-2017-0305
F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that may allow modification of the BIG-IP system configuration, extraction of sensitive system files, and possible remote command execution on the system when deployed using the Explicit Proxy feature plus SNAT Auto Map option for egress traffic.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.031
EPSS Ranking 86.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2017-0305
-
cpe:2.3:a:f5:ssl_intercept_iapp:1.5.0
-
cpe:2.3:a:f5:ssl_intercept_iapp:1.5.7