CVE-2017-6165 F5 BIG-IP SafeNet External Network HSM Script Vulnerability (K74759095)

On VIPRION platforms only, the script which synchronizes SafeNet External Network HSM configuration elements between blades in a clustered deployment will log the HSM partition password in cleartext to the "/var/log/ltm" log file.

Affected Versions:
BIG-IP ASM 12.0.0 - 12.1.2
BIG-IP ASM 11.6.0 - 11.6.1 HF1
BIG-IP ASM 11.5.1 HF6 - 11.5.4

QID Detection Logic:
This authenticated QID checks for the vulnerable versions of F5 BIG-IP devices.

An attacker with access to the logged password may be able to cause disruption of service or have other impacts on the HSM partition.

Customers are advised to refer to K74759095 for updates pertaining to this vulnerability.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

K74759095