Security Advisory Description
When a BIG-IP DNS or BIG-IP LTM system is enabled with the DNS Services license, and a TSIG key is created, the key is logged in plaintext in the audit log. (CVE-2023-41253)
Impact
An authenticated attacker with at least auditor role privileges can view the TSIG key in plaintext. There is no data plane exposure; this is a control plane issue only.