Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistF5CVELIST:CVE-2023-3470
HistoryAug 02, 2023 - 3:54 p.m.

CVE-2023-3470 BIG-IP FIPS HSM password vulnerability CVE-2023-3470

2023-08-0215:54:14
CWE-1391
f5
www.cve.org
3
f5 big-ip
cavium nitrox fips hsm
deterministic password
tmsh access
vcmp systems
hardware platforms

CVSS3

6

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

23.5%

JSON

Specific F5 BIG-IP platforms with Cavium Nitrox FIPS HSM cards generate a deterministic password for the Crypto User account. Β The predictable nature of the password allows an authenticated user with TMSH access to the BIG-IP system, or anyone with physical access to the FIPS HSM, the information required to generate the correct password. Β On vCMP systems, all Guests share the same deterministic password, allowing those with TMSH access on one Guest to access keys of a different Guest.

The following BIG-IP hardware platforms are affected: 10350v-F, i5820-DF, i7820-DF, i15820-DF, 5250v-F, 7200v-F, 10200v-F, 6900-F, 8900-F, 11000-F, and 11050-F.

The BIG-IP rSeries r5920-DF and r10920-DF are not affected, nor does the issue affect software FIPS implementations or network HSM configurations.

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

CNA Affected

[
  {
    "defaultStatus": "unknown",
    "modules": [
      "All Modules"
    ],
    "product": "BIG-IP",
    "vendor": "F5",
    "versions": [
      {
        "lessThan": "*",
        "status": "unaffected",
        "version": "16.0.0",
        "versionType": "semver"
      },
      {
        "lessThan": "15.1.1",
        "status": "affected",
        "version": "15.1.0",
        "versionType": "semver"
      },
      {
        "lessThan": "14.1.4",
        "status": "affected",
        "version": "14.1.0",
        "versionType": "semver"
      },
      {
        "lessThan": "13.1.4",
        "status": "affected",
        "version": "13.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Related

nessus 1
cnvd 1
prion 1
f5 2
nvd 1
cve 1
nessus
nessus
F5 Networks BIG-IP : BIG-IP FIPS HSM password vulnerability (K000135449)
2023-08-02 00:00:00
cnvd
cnvd
F5 BIG-IP Information Disclosure Vulnerability (CNVD-2023-82304)
2023-08-07 00:00:00
prion
prion
Default credentials
2023-08-02 16:15:00
f5
f5
K000135449 : BIG-IP FIPS HSM password vulnerability CVE-2023-3470
2023-08-02 00:00:00
K000135479 : Overview of F5 vulnerabilities (August 2023)
2023-08-02 00:00:00
nvd
nvd
CVE-2023-3470
2023-08-02 16:15:10
cve
cve
CVE-2023-3470
2023-08-02 16:15:10

CVSS3

6

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

23.5%

JSON
Related for CVELIST:CVE-2023-3470
nessus1cnvd1prion1f52nvd1cve1