VIR Vulnerability Intelligence Relay

CVE-2012-1493

high
Published 2012-07-09 ยท Modified 2026-04-29
๐Ÿ’ฌ Discuss on Community โœš Propose mitigation
CVSS v3
โ€”
CVSS v4 NEW
โ€”
not yet in upstream
VIR risk
8.8

Description

F5 BIG-IP appliances 9.x before 9.4.8-HF5, 10.x before 10.2.4, 11.0.x before 11.0.0-HF2, and 11.1.x before 11.1.0-HF3, and Enterprise Manager before 2.1.0-HF2, 2.2.x before 2.2.0-HF1, and 2.3.x before 2.3.0-HF3, use a single SSH private key across different customers' installations and do not properly restrict access to this key, which makes it easier for remote attackers to perform SSH logins via the PubkeyAuthentication option.

Predictions

Exploit likelihood
20%
Patch ETA
โ€”

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ€” if you've already worked around this in production โ€” publish your fix to the community-verified tier.

โœš Propose a mitigation on Community โ†’ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

Exploits

Public proof-of-concept code below. AS-IS, for defenders and authorised testing only.

Exploit-DB

EDB-19091 remote hardware verified
David Kennedy (ReL1K) ยท 2012-06-12

F5 BIG-IP - Authentication Bypass

Source code queued for fetch โ€” refresh in a moment.
EDB-19064 dos hardware verified
Florent Daigniere ยท 2012-06-11

F5 BIG-IP - Authentication Bypass (PoC)

Source code queued for fetch โ€” refresh in a moment.
EDB-19099 remote hardware verified
Metasploit ยท 2012-06-13

F5 BIG-IP - SSH Private Key Exposure (Metasploit)

Source code queued for fetch โ€” refresh in a moment.

Metasploit modules

exploit_linux/ssh/f5_bigip_known_privkey rank 600
F5 BIG-IP SSH Private Key Exposure
Source fetch failed: fetch_error โ€” view the original via the link above.

Application impact
VendorProductVersionsFixed
f5big-ip_application_security_manager9.2.0
f5big-ip_application_security_manager9.4.4
f5big-ip_application_security_manager9.4.5
f5big-ip_application_security_manager9.4.6
f5big-ip_application_security_manager9.4.7
f5big-ip_application_security_manager9.4.8
f5big-ip_application_security_manager10.0.0
f5big-ip_application_security_manager10.0.1
f5big-ip_application_security_manager10.2.3
f5big-ip_application_security_manager11.0.0
f5big-ip_application_security_manager11.1.0
f5big-ip_global_traffic_manager
f5big-ip_global_traffic_manager9.2.2
f5big-ip_global_traffic_manager9.4.8
f5big-ip_global_traffic_manager10.0.0
f5big-ip_global_traffic_manager10.2.3
f5big-ip_global_traffic_manager11.0.0
f5big-ip_global_traffic_manager11.1.0
f5big-ip_local_traffic_manager
f5big-ip_local_traffic_manager9.0.0
f5big-ip_local_traffic_manager9.4.8
f5big-ip_local_traffic_manager10.0.0
f5big-ip_local_traffic_manager10.2.3
f5big-ip_local_traffic_manager11.0.0
f5big-ip_local_traffic_manager11.1.0
f5enterprise_manager
f5enterprise_manager1.0
f5enterprise_manager2.0
f5enterprise_manager2.1.0
f5enterprise_manager2.2.0
f5enterprise_manager2.3.0

References

CWEs

CWE-255

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.