K05272632 : BIG-IP AOM password sync vulnerability CVE-2015-8611

2016-01-0800:00:00

my.f5.com

9.5 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.8%

JSON

Security Advisory Description

BIG-IP systems on the 2000, 4000, 5000, 7000, and 10000 platforms may fail to sync passwords to the Always-On-Management (AOM). (CVE-2015-8611)
Impact
An Always-On Management (AOM) configuration with network access may allow access to AOM using a stale or default password.

Note: In the default configuration, AOM network access is disabled. BIG-IP systems are only vulnerable when AOM network access is enabled. F5 strongly recommends restricting access for AOM networks to trusted hosts only, as part of the overall securing of access to the BIG-IP system.

CPENameOperatorVersion
big-iq centralized managementeq4.6.0
big-ip afmeq11.3.0
big-ip afmeq11.4.0
big-ip afmeq11.4.1
big-ip afmeq11.5.0
big-ip afmeq11.5.1
big-ip afmeq11.5.10
big-ip afmeq11.5.2
big-ip afmeq11.5.3
big-ip afmeq11.5.4

Name	Operator	Version
big-iq centralized management	eq	4.6.0
big-ip afm	eq	11.3.0
big-ip afm	eq	11.4.0
big-ip afm	eq	11.4.1
big-ip afm	eq	11.5.0
big-ip afm	eq	11.5.1
big-ip afm	eq	11.5.10
big-ip afm	eq	11.5.2
big-ip afm	eq	11.5.3
big-ip afm	eq	11.5.4

Rows per page:

1-10 of 3301