http://support.f5.com/kb/en-us/solutions/public/13000/600/sol13600.html

http://www.theregister.co.uk/2012/06/13/f5_kit_metasploit_exploit/

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb

https://www.trustmatta.com/advisories/MATTA-2012-002.txt

The SSH server on the remote host accepts a publicly known static SSH private key for authentication. A remote attacker can log in to this host using this publicly known private key.

The remote F5 device has an authentication bypass vulnerability.  The SSH private key for the root user is publicly known.  A remote, unauthenticated attacker could exploit this to login as root.

ID	Name	Product	Family	Severity
73920	SSH Static Key Accepted	Nessus	Gain a shell remotely	critical
59477	F5 Multiple Products Root Authentication Bypass	Nessus	Gain a shell remotely	critical

CVE-2012-1493

high

Tenable Plugins

critical

critical