F5 Networks BIG-IP : SNMPv3 HMAC verification vulnerability (SOL8939)
Critical Nessus Plugin ID 78225
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionSNMPv3 HMAC verification relies on the client to specify the HMAC length. This flexibility allows remote attackers to bypass SNMP authentication by specifying a length value of 1 , which only checks the first byte.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution SOL8939.