F5 Networks BIG-IP : BIG-IP and BIG-IQ DB Variable Vulnerability (K20850144)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.0 / 16.1.4 / 15.1.9. It is, therefore, affected by a vulnerability as referenced in the K20850144 advisory. The BIG-IP and BIG-IQ systems do not encrypt some sensitive information written to Database DB variables. Not...

CVE-2023-41964

creationtimestamp| type| source ---|---|--- 2023-10-10 16:16:54+00:00| seen| https://t.me/cibsecurity/71931...

CVE-2023-41964

The BIG-IP and BIG-IQ systems do not encrypt some sensitive information written to Database DB variables. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2023-41964 BIG-IP and BIG-IQ Database Variable vulnerability

The BIG-IP and BIG-IQ systems do not encrypt some sensitive information written to Database DB variables. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2023-41964

The CVE-2023-41964 issue affects BIG-IP and BIG-IQ where two DB variables store sensitive values in plaintext (a proxy server password and a RADIUS/TACACS+ shared secret). The root cause is unencrypted storage of these values, enabling an authenticated attacker to access privileged information. R...

K20850144: BIG-IP and BIG-IQ DB variable vulnerability CVE-2023-41964

Security Advisory Description The BIG-IP and BIG-IQ systems do not encrypt the values of two Database DB variables, a password used for a proxy server connection and a RADIUS/TACACS+ shared secret. CVE-2023-41964 Impact An authenticated attacker may be able to gain access to privileged informatio...