CVE-2014-6271 Shellshocked
It's a good thing we are naming all of our vulnerabilities now; it's easier to keep track of them. I haven't seen an official designation for CVE-2014-6271, but Shellshock seems appropriate. This ...
Published Sep 25, 2014
Version 1.0
We can confirm that the management GUI is vulnerable to an authenticated user. We will be patching this issue as soon as possible.
"At this point, we do not believe the traffic passing interfaces of a BIG-IP can be exploited."
The attack will be passed to back end severs. We do not believe that the attack could exploit a BIG-IP directly through the traffic interfaces.