CVE-2016-2084
Summary
| CVE | CVE-2016-2084 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2016-04-13 16:59:10 UTC |
| Updated | 2026-05-06 22:30:45 UTC |
| Description | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 build 685-HF10, 11.5.1 before build 10.104.180, 11.5.2 before 11.5.4 build 0.1.256, 11.6.0 before build 6.204.442, and 12.0.0 before build 1.14.628; BIG-IP AAM 11.4.x before 11.4.1 build 685-HF10, 11.5.1 before build 10.104.180, 11.5.2 before 11.5.4 build 0.1.256, 11.6.0 before build 6.204.442, and 12.0.0 before build 1.14.628; BIG-IP DNS 12.0.0 before build 1.14.628; BIG-IP Edge Gateway, WebAccelerator, and WOM 11.3.0; BIG-IP GTM 11.3.x, 11.4.x before 11.4.1 build 685-HF10, 11.5.1 before build 10.104.180, 11.5.2 before 11.5.4 build 0.1.256, and 11.6.0 before build 6.204.442; BIG-IP PSM 11.3.x and 11.4.x before 11.4.1 build 685-HF10; BIG-IQ Cloud, Device, and Security 4.2.0 through 4.5.0; and BIG-IQ ADC 4.5.0 do not properly regenerate certificates and keys when deploying cloud images in Amazon Web Services (AWS), Azure or Verizon cloud services environments, which allows attackers to obtain sensitive information or cause a denial of service (disruption) by leveraging a target instance configuration. |
Risk And Classification
Primary CVSS: v3.0 7.4 HIGH from [email protected]
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H
Problem Types: CWE-200 | n/a
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.0 | [email protected] | Primary | 7.4 | HIGH | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H |
| 2.0 | [email protected] | Primary | 4 | AV:N/AC:H/Au:N/C:P/I:N/A:P |
CVSS v3.0 Breakdown
Attack Vector
NetworkAttack Complexity
HighPrivileges Required
NoneUser Interaction
NoneScope
UnchangedConfidentiality
HighIntegrity
NoneAvailability
HighCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
HighAuthentication
NoneConfidentiality
PartialIntegrity
NoneAvailability
PartialAV:N/AC:H/Au:N/C:P/I:N/A:P
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | F5 | Big-ip Access Policy Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Domain Name System | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Edge Gateway | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Protocol Security Module | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Protocol Security Module | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Wan Optimization Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Webaccelerator | 11.3.0 | All | All | All |
| Application | F5 | Big-iq Application Delivery Controller | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.5.0 | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| F5 BIG-IP Cloud Key Generation Flaw Lets Remote Users Access the Target System - SecurityTracker | af854a3a-2127-422b-91ae-364da2661108 | www.securitytracker.com | |
| SOL11772107 - BIG-IP and BIG-IQ cloud image vulnerability CVE-2016-2084 | af854a3a-2127-422b-91ae-364da2661108 | support.f5.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.