Operational Defect Database
BugZero found this defect 341 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 1185165
Explicit forward proxy does not validate server certificate when it is self-signed so that SSL handshake fails.
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP LTM
Affected releases:
15.1.0
15.1.0.1
15.1.0.2
15.1.0.3
15.1.0.4
15.1.0.5
15.1.1
15.1.2
15.1.2.1
15.1.3
15.1.3.1
15.1.4
Fixed releases:
No fixed releases provided.
Description:
Bug ID 1185165: Explicit forward proxy does not validate server certificate when it is self-signed so that SSL handshake fails. ... Last Modified: Apr 26, 2024 ... Symptoms ... When self-signed certificates are used for a virtual server which uses the SHA1 hash algorithm, the SSL handshake may be rejected. ... Impact ... SSL handshake will fail when self-signed certificates are used. ... Conditions ... -- Configure SSL Forward Proxy. -- Configure self-signed certificate as Trusted CA in BIG-IP and at Server. ... Workaround ... Use a valid certificate chain instead of a self-signed certificate. ... Fix Information
