CVE-2016-2084
Summary
| CVE | CVE-2016-2084 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2016-04-13 16:59:00 UTC |
| Updated | 2016-04-21 14:02:00 UTC |
| Description | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 build 685-HF10, 11.5.1 before build 10.104.180, 11.5.2 before 11.5.4 build 0.1.256, 11.6.0 before build 6.204.442, and 12.0.0 before build 1.14.628; BIG-IP AAM 11.4.x before 11.4.1 build 685-HF10, 11.5.1 before build 10.104.180, 11.5.2 before 11.5.4 build 0.1.256, 11.6.0 before build 6.204.442, and 12.0.0 before build 1.14.628; BIG-IP DNS 12.0.0 before build 1.14.628; BIG-IP Edge Gateway, WebAccelerator, and WOM 11.3.0; BIG-IP GTM 11.3.x, 11.4.x before 11.4.1 build 685-HF10, 11.5.1 before build 10.104.180, 11.5.2 before 11.5.4 build 0.1.256, and 11.6.0 before build 6.204.442; BIG-IP PSM 11.3.x and 11.4.x before 11.4.1 build 685-HF10; BIG-IQ Cloud, Device, and Security 4.2.0 through 4.5.0; and BIG-IQ ADC 4.5.0 do not properly regenerate certificates and keys when deploying cloud images in Amazon Web Services (AWS), Azure or Verizon cloud services environments, which allows attackers to obtain sensitive information or cause a denial of service (disruption) by leveraging a target instance configuration. |
Risk And Classification
Problem Types: CWE-200
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | F5 | Big-ip Access Policy Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Analytics | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Analytics | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Application Security Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Domain Name System | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Domain Name System | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Edge Gateway | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Edge Gateway | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Link Controller | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Link Controller | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.4.1 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.1 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.2 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.3 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.5.4 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 11.6.0 | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | 12.0.0 | All | All | All |
| Application | F5 | Big-ip Protocol Security Module | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Protocol Security Module | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Protocol Security Module | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Protocol Security Module | 11.4.0 | All | All | All |
| Application | F5 | Big-ip Wan Optimization Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Wan Optimization Manager | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Webaccelerator | 11.3.0 | All | All | All |
| Application | F5 | Big-ip Webaccelerator | 11.3.0 | All | All | All |
| Application | F5 | Big-iq Application Delivery Controller | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Application Delivery Controller | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Cloud | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Device | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.5.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.2.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.3.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.4.0 | All | All | All |
| Application | F5 | Big-iq Security | 4.5.0 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| F5 BIG-IP Cloud Key Generation Flaw Lets Remote Users Access the Target System - SecurityTracker | SECTRACK | www.securitytracker.com | |
| SOL11772107 - BIG-IP and BIG-IQ cloud image vulnerability CVE-2016-2084 | CONFIRM | support.f5.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.