Command Line Credential Disclosure in F5 BIG-IP Controller for Kubernetes

Command Line Credential Disclosure in F5 BIG-IP Controller for Kubernetes

CVE-2018-5543 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The F5 BIG-IP Controller for Kubernetes 1.0.0-1.5.0 (k8s-bigip-crtl) passes BIG-IP username and password as command line parameters, which may lead to disclosure of the credentials used by the container.

Learn more about our Cis Benchmark Audit For F5.