CVE-2023-43485

When TACACS+ audit forwarding is configured on BIG-IP or BIG-IQ system, sharedsecret is logged in plaintext in the audit log. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2023-43485

CVE-2023-43485 describes an information disclosure in BIG-IP/BIG-IQ TACACS+ audit log forwarding where the shared secret is logged in plaintext. Connected advisories confirm impact: an authenticated attacker with auditor privileges can view the shared secret; there is no data plane exposure. Affe...

K06110200: BIG-IP and BIG-IQ TACACS+ audit log vulnerability CVE-2023-43485

Security Advisory Description When TACACS+ audit forwarding is configured on a BIG-IP or BIG-IQ system, shared secret is logged in plaintext in the audit log. CVE-2023-43485 Impact An authenticated attacker with at least auditor role privileges can view shared secret. There is no data plane...

K21404407: TACACS+ audit forwarding uses an unencrypted database variable to store passwords

Security Advisory Description The audit forwarding mechanism for Terminal Access Controller Access-Control System Plus TACACS+ uses an unencrypted database variable to store passwords. BIG-IP This issue occurs when all the following conditions are met: You configure TACACS+ to enable audit...