Vulnerabilities > F5 > BIG IP Controller
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-08 | CVE-2019-5021 | Versions of the Official Alpine Linux Docker images (since v3.3) contain a NULL password for the `root` user. | 9.8 |
| 2018-07-31 | CVE-2018-5543 | Insufficiently Protected Credentials vulnerability in F5 Big-Ip Controller The F5 BIG-IP Controller for Kubernetes 1.0.0-1.5.0 (k8s-bigip-crtl) passes BIG-IP username and password as command line parameters, which may lead to disclosure of the credentials used by the container. | 8.8 |