Lucene search
F5CVELIST:CVE-2017-6165HistoryOct 20, 2017 - 3:00 p.m.
CVE-2017-6165
2017-10-2015:00:00
f5
www.cve.org
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 HF6 through 11.5.4 HF4, 11.6.0 through 11.6.1 HF1, and 12.0.0 through 12.1.2 on VIPRION platforms only, the script which synchronizes SafeNet External Network HSM configuration elements between blades in a clustered deployment will log the HSM partition password in cleartext to the “/var/log/ltm” log file.
CNA Affected
[
{
"product": "F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, WebSafe",
"vendor": "F5 Networks, Inc.",
"versions": [
{
"status": "affected",
"version": "12.0.0 through 12.1.2"
},
{
"status": "affected",
"version": "11.6.0 through 11.6.1 HF1"
},
{
"status": "affected",
"version": "11.5.1 HF6 through 11.5.4 HF4"
}
]
}
]Related
nvd
nvd
CVE-2017-6165
2017-10-20 15:29:00
f5
f5
K74759095 : SafeNet External Network HSM script vulnerability CVE-2017-6165
2017-10-20 00:00:00
cve
cve
CVE-2017-6165
2017-10-20 15:29:00
nessus
nessus
prion
prion
Default credentials
2017-10-20 15:29:00