CVE-2017-6165 F5 BIG-IP SafeNet External Network HSM Script Vulnerability (K74759095)

漏洞类别:Local

漏洞等级:

漏洞信息

On VIPRION platforms only, the script which synchronizes SafeNet External Network HSM configuration elements between blades in a clustered deployment will log the HSM partition password in cleartext to the “/var/log/ltm” log file.

Affected Versions:
BIG-IP ASM 12.0.0 – 12.1.2
BIG-IP ASM 11.6.0 – 11.6.1 HF1
BIG-IP ASM 11.5.1 HF6 – 11.5.4

QID Detection Logic:
This authenticated QID checks for the vulnerable versions of F5 BIG-IP devices.

漏洞危害

An attacker with access to the logged password may be able to cause disruption of service or have other impacts on the HSM partition.

解决方案

Customers are advised to refer to K74759095 for updates pertaining to this vulnerability.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

K74759095

Leave a Reply