Lucene search
F5F5:K000135874HistoryOct 10, 2023 - 12:00 a.m.
K000135874 : BIG-IP Next SPK SSH vulnerability CVE-2023-45226
2023-10-1000:00:00
my.f5.com
5
big-ip
spk
ssh
vulnerability
cve-2023-45226
hardcoded credentials
intercept traffic
decrypt
Security Advisory Description
The BIG-IP SPK TMM (Traffic Management Module) f5-debug-sidecar and f5-debug-sshd containers contain hardcoded credentials that may allow an attacker with the ability to intercept traffic to impersonate the SPK Secure Shell (SSH) server on those containers. This is exposed only when ssh debug is enabled. (CVE-2023-45226)
Impact
This vulnerability may allow an attacker to intercept traffic and use knowledge of the hardcoded credential to decrypt SSH traffic.
Related
cvelist
cvelist
CVE-2023-45226 BIG-IP Next SPK SSH vulnerability
2023-10-10 12:39:25
prion
prion
Hardcoded credentials
2023-10-10 13:15:00
cve
cve
CVE-2023-45226
2023-10-10 13:15:22
nvd
nvd
CVE-2023-45226
2023-10-10 13:15:22
vulnrichment
vulnrichment
CVE-2023-45226 BIG-IP Next SPK SSH vulnerability
2023-10-10 12:39:25
cnvd
cnvd
F5 BIG-IP Next SPK Hardcoded Credentials Vulnerability
2023-10-11 00:00:00
f5
f5
K000137053 : Overview of F5 vulnerabilities (October 2023)
2023-10-10 00:00:00