Last Modified: Mar 09, 2026
Affected Product(s):
BIG-IP LTM
Known Affected Versions:
17.5.1.3, 17.5.1.4, 17.5.1.5
Opened: Dec 22, 2025 Severity: 4-Minor
When changing the password via CLI (tmsh modify auth password admin), case-only and rotated pattern restrictions are not enforced
If users update the password through the CLI with only a rotation or case-only change compared to the previous password, it is not detected.
Update the password which is either rotated or case-only change of the existing password through CLI. GUI displays the below errors : For case only change : GUI error: 01070366:3: Bad password (admin): BAD PASSWORD: case changes only For rotated pattern: 01070366:3: Bad password (admin): BAD PASSWORD: is rotated Whereas CLI allows users to update the password without any restriction.
None
None