F5: Don't panic but anyone can log into our load balancers, thanks to libssh's credentials-optional security goof

Also: AWS talks how to avoid TLS state machine slips

Network box maker F5 says it has shipped load balancers that are vulnerable to the libssh authentication-bypass bug – meaning anyone who can reach the devices over the network or internet can potentially log in simply by asking nicely.…

via The Register - Data Centre: Networks
http://go.theregister.com/feed/www.theregister.co.uk/2018/10/19/f5_vulnerable_libssh/