CVE-2017-6131 — Hard-coded Credentials in Networks INC Big-ip Azure Cloud Instance

CWE-798 — Hard-coded Credentials4 documents4 sources

Severity

9.8CRITICALNVD

EPSS

0.8%

top 26.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F5 Networks INC Big-ip Azure Cloud Instance F5 Big-ip Access Policy Manager F5 Big-ip Advanced Firewall Manager +7 more

Timeline

PublishedMay 23

Latest updateMay 17

Description

In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and 13.0.0 Azure cloud instance may contain a default administrative password which could be used to remotely log into the BIG-IP system. The impacted administrative account is the Azure instance administrative user that was created at deployment. The root and admin accounts are not vulnerable. An attacker may be able to remotely access the BIG-IP host via SSH.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages10 packages

▶CVEListV5f5_networks_inc/big-ip_azure_cloud_instance12.0.0 to 12.1.2, 13.0.0+1

▶NVDf5/big-ip_domain_name_system5 versions+4

▶NVDf5/big-ip_access_policy_manager5 versions+4

▶NVDf5/big-ip_websafe5 versions+4

▶NVDf5/big-ip_link_controller5 versions+4

🔴Vulnerability Details

GHSA

GHSA-jgc9-5f5f-87mg: In some circumstances, an F5 BIG-IP version 12↗2022-05-17

▶

CVEList

CVE-2017-6131: In some circumstances, an F5 BIG-IP version 12↗2017-05-23

▶

📋Vendor Advisories

CVE-2017-6131: In some circumstances, an F5 BIG-IP version 12↗2017-05-23

▶