Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When the F5 BIG-IP 12.1.0-12.1.1, 11.6.0-11.6.1, 11.5.1-11.5.5, or 11.2.1 system is configured with a wildcard IPSec tunnel endpoint, it may allow a remote attacker to disrupt or impersonate the tunnels that have completed phase 1 IPSec negotiations. The attacker must possess the necessary credentials to negotiate the phase 1 of the IPSec exchange to exploit this vulnerability; in many environment this limits the attack surface to other endpoints under the same administration.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款F5产品安全漏洞
Vulnerability Description
F5 BIG-IP LTM等都是美国F5公司的产品。F5 BIG-IP LTM是一款本地流量管理器;BIG-IP AAM是一款应用程序加速管理器。 多款F5产品中存在安全漏洞。当系统配置有通配符IPSec通道端点时,远程攻击者可通过获取必要的证书利用该漏洞中断或冒充通道。以下产品和版本受到影响:F5 BIG-IP LTM 12.1.0版本至12.1.1版本,11.6.0版本至11.6.1版本,11.5.1版本至11.5.5版本,11.2.1版本;BIG-IP AAM 12.1.0版本至12.1.1版本,1
CVSS Information
N/A
Vulnerability Type
N/A