CVE-2017-6131
CRITICALF5 BIG-IP 12.0.0-12.1.2 and 13.0.0 - Use of Hard-coded Credentials in Azure Instance Administrative Account
Title source: llmDescription
In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and 13.0.0 Azure cloud instance may contain a default administrative password which could be used to remotely log into the BIG-IP system. The impacted administrative account is the Azure instance administrative user that was created at deployment. The root and admin accounts are not vulnerable. An attacker may be able to remotely access the BIG-IP host via SSH.
References (2)
Core 2
Core References
Permissions Required, Vendor Advisory x_refsource_confirm
https://support.f5.com/csp/article/K61757346
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1038569
Scores
CVSS v3
9.8
EPSS
0.0077
EPSS Percentile
73.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-798
Status
published
Products (47)
f5/big-ip_access_policy_manager
12.0.0
f5/big-ip_access_policy_manager
12.1.0
f5/big-ip_access_policy_manager
12.1.1
f5/big-ip_access_policy_manager
12.1.2
f5/big-ip_access_policy_manager
13.0.0
f5/big-ip_advanced_firewall_manager
12.0.0
f5/big-ip_advanced_firewall_manager
12.1.0
f5/big-ip_advanced_firewall_manager
12.1.1
f5/big-ip_advanced_firewall_manager
12.1.2
f5/big-ip_advanced_firewall_manager
13.0.0
... and 37 more
Published
May 23, 2017
Tracked Since
Feb 18, 2026