CVE-2017-6131

First published: Tue May 23 2017(Updated: )

In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and 13.0.0 Azure cloud instance may contain a default administrative password which could be used to remotely log into the BIG-IP system. The impacted administrative account is the Azure instance administrative user that was created at deployment. The root and admin accounts are not vulnerable. An attacker may be able to remotely access the BIG-IP host via SSH.

Credit: f5sirt@f5.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• agent/references
• agent/severity
• agent/author
• agent/type
• agent/weakness
• agent/description
• agent/event
• agent/last-modified-date
• agent/softwarecombine
• agent/first-publish-date
• agent/tags
• collector/mitre-cve
• source/MITRE
• vendor/f5
• canonical/f5 big-ip local traffic manager
• version/f5 big-ip local traffic manager/12.0.0
• version/f5 big-ip local traffic manager/12.1.0
• version/f5 big-ip local traffic manager/12.1.1
• version/f5 big-ip local traffic manager/12.1.2
• version/f5 big-ip local traffic manager/13.0.0
• canonical/f5 big-ip application acceleration manager
• version/f5 big-ip application acceleration manager/12.0.0
• version/f5 big-ip application acceleration manager/12.1.0
• version/f5 big-ip application acceleration manager/12.1.1
• version/f5 big-ip application acceleration manager/12.1.2
• version/f5 big-ip application acceleration manager/13.0.0
• canonical/f5 big-ip advanced firewall manager
• version/f5 big-ip advanced firewall manager/12.0.0
• version/f5 big-ip advanced firewall manager/12.1.0
• version/f5 big-ip advanced firewall manager/12.1.1
• version/f5 big-ip advanced firewall manager/12.1.2
• version/f5 big-ip advanced firewall manager/13.0.0
• canonical/f5 big-ip access policy manager
• version/f5 big-ip access policy manager/12.0.0
• version/f5 big-ip access policy manager/12.1.0
• version/f5 big-ip access policy manager/12.1.1
• version/f5 big-ip access policy manager/12.1.2
• version/f5 big-ip access policy manager/13.0.0
• canonical/f5 big-ip application security manager
• version/f5 big-ip application security manager/12.0.0
• version/f5 big-ip application security manager/12.1.0
• version/f5 big-ip application security manager/12.1.1
• version/f5 big-ip application security manager/12.1.2
• version/f5 big-ip application security manager/13.0.0
• canonical/f5 big-ip domain name system
• version/f5 big-ip domain name system/12.0.0
• version/f5 big-ip domain name system/12.1.0
• version/f5 big-ip domain name system/12.1.1
• version/f5 big-ip domain name system/12.1.2
• version/f5 big-ip domain name system/13.0.0
• canonical/f5 big-ip link controller
• version/f5 big-ip link controller/12.0.0
• version/f5 big-ip link controller/12.1.0
• version/f5 big-ip link controller/12.1.1
• version/f5 big-ip link controller/12.1.2
• version/f5 big-ip link controller/13.0.0
• canonical/f5 big-ip policy enforcement manager
• version/f5 big-ip policy enforcement manager/12.0.0
• version/f5 big-ip policy enforcement manager/12.1.0
• version/f5 big-ip policy enforcement manager/12.1.1
• version/f5 big-ip policy enforcement manager/12.1.2
• version/f5 big-ip policy enforcement manager/13.0.0
• canonical/f5 big-ip websafe
• version/f5 big-ip websafe/12.0.0
• version/f5 big-ip websafe/12.1.0
• version/f5 big-ip websafe/12.1.1
• version/f5 big-ip websafe/12.1.2
• version/f5 big-ip websafe/13.0.0