Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
None
Privileges Required
None
Attack Vector
Physical
0

CVE-2023-3470

Disclosure Date: August 02, 2023
CVE-2023-3470 CVSS v3 Base Score: 6.1
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Specific F5 BIG-IP platforms with Cavium Nitrox FIPS HSM cards generate a deterministic password for the Crypto User account.  The predictable nature of the password allows an authenticated user with TMSH access to the BIG-IP system, or anyone with physical access to the FIPS HSM, the information required to generate the correct password.  On vCMP systems, all Guests share the same deterministic password, allowing those with TMSH access on one Guest to access keys of a different Guest.

The following BIG-IP hardware platforms are affected: 10350v-F, i5820-DF, i7820-DF, i15820-DF, 5250v-F, 7200v-F, 10200v-F, 6900-F, 8900-F, 11000-F, and 11050-F.

The BIG-IP rSeries r5920-DF and r10920-DF are not affected, nor does the issue affect software FIPS implementations or network HSM configurations.

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
6.1 Medium
Impact Score:
5.2
Exploitability Score:
0.9
Vector:
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector (AV):
Physical
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
High
Integrity (I):
High
Availability (A):
None

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
BIG-IP not down converted
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • f5

Products

  • big-ip 10200v-f firmware -,
  • big-ip 10350v-f firmware -,
  • big-ip 11000-f firmware -,
  • big-ip 11050-f firmware -,
  • big-ip 5250v-f firmware -,
  • big-ip 6900-f firmware -,
  • big-ip 7200v-f firmware -,
  • big-ip 8900-f firmware -,
  • big-ip access policy manager,
  • big-ip access policy manager 15.1.0,
  • big-ip advanced firewall manager,
  • big-ip advanced firewall manager 15.1.0,
  • big-ip advanced web application firewall,
  • big-ip advanced web application firewall 15.1.0,
  • big-ip analytics,
  • big-ip analytics 15.1.0,
  • big-ip application acceleration manager,
  • big-ip application acceleration manager 15.1.0,
  • big-ip application security manager,
  • big-ip application security manager 15.1.0,
  • big-ip application visibility and reporting,
  • big-ip application visibility and reporting 15.1.0,
  • big-ip carrier-grade nat,
  • big-ip carrier-grade nat 15.1.0,
  • big-ip ddos hybrid defender,
  • big-ip ddos hybrid defender 15.1.0,
  • big-ip domain name system,
  • big-ip domain name system 15.1.0,
  • big-ip edge gateway,
  • big-ip edge gateway 15.1.0,
  • big-ip fraud protection service,
  • big-ip fraud protection service 15.1.0,
  • big-ip global traffic manager,
  • big-ip global traffic manager 15.1.0,
  • big-ip i15820-df firmware -,
  • big-ip i5820-df firmware -,
  • big-ip i7820-df firmware -,
  • big-ip link controller,
  • big-ip link controller 15.1.0,
  • big-ip local traffic manager,
  • big-ip local traffic manager 15.1.0,
  • big-ip policy enforcement manager,
  • big-ip policy enforcement manager 15.1.0,
  • big-ip ssl orchestrator,
  • big-ip ssl orchestrator 15.1.0,
  • big-ip webaccelerator,
  • big-ip webaccelerator 15.1.0,
  • big-ip websafe,
  • big-ip websafe 15.1.0

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis