F5 Networks Big Ip Next Central Manager
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in F5 Networks Big Ip Next Central Manager.
By the Year
In 2025 there have been 0 vulnerabilities in F5 Networks Big Ip Next Central Manager. Last year, in 2024 Big Ip Next Central Manager had 7 security vulnerabilities published. Right now, Big Ip Next Central Manager is on track to have less security vulnerabilities in 2025 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2025 | 0 | 0.00 |
2024 | 7 | 7.80 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Big Ip Next Central Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent F5 Networks Big Ip Next Central Manager Security Vulnerabilities
The Central Manager user session refresh token does not expire when a user logs out
CVE-2024-39809
8.8 - High
- August 14, 2024
The Central Manager user session refresh token does not expire when a user logs out. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Insufficient Session Expiration
When generating QKView of BIG-IP Next instance
CVE-2024-41719
5.5 - Medium
- August 14, 2024
When generating QKView of BIG-IP Next instance from the BIG-IP Next Central Manager (CM), F5 iHealth credentials will be logged in the BIG-IP Central Manager logs. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Insertion of Sensitive Information into Log File
BIG-IP Next Central Manager may allow an attacker to lock out an account that has never been logged in
CVE-2024-37028
5.3 - Medium
- August 14, 2024
BIG-IP Next Central Manager may allow an attacker to lock out an account that has never been logged in. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
authentification
An improper certificate validation vulnerability exists in BIG-IP Next Central Manager and may
CVE-2024-33612
8 - High
- May 08, 2024
An improper certificate validation vulnerability exists in BIG-IP Next Central Manager and may allow an attacker to impersonate an Instance Provider system. A successful exploit of this vulnerability can allow the attacker to cross a security boundary. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Improper Certificate Validation
BIG-IP Next Central Manager (CM) may allow an unauthenticated, remote attacker to obtain the BIG-IP Next LTM/WAF instance credentials
CVE-2024-32049
7.4 - High
- May 08, 2024
BIG-IP Next Central Manager (CM) may allow an unauthenticated, remote attacker to obtain the BIG-IP Next LTM/WAF instance credentials. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
An SQL injection vulnerability exists in the BIG-IP Next Central Manager API (URI)
CVE-2024-26026
9.8 - Critical
- May 08, 2024
An SQL injection vulnerability exists in the BIG-IP Next Central Manager API (URI). Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
SQL Injection
An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI)
CVE-2024-21793
9.8 - Critical
- May 08, 2024
An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI). Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for F5 Networks Big Ip Next Central Manager or by F5 Networks? Click the Watch button to subscribe.