Big Ip Next Central Manager F5 Networks Big Ip Next Central Manager

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in F5 Networks Big Ip Next Central Manager.

By the Year

In 2025 there have been 0 vulnerabilities in F5 Networks Big Ip Next Central Manager. Last year, in 2024 Big Ip Next Central Manager had 7 security vulnerabilities published. Right now, Big Ip Next Central Manager is on track to have less security vulnerabilities in 2025 than it did last year.

Year Vulnerabilities Average Score
2025 0 0.00
2024 7 7.80
2023 0 0.00
2022 0 0.00
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Big Ip Next Central Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent F5 Networks Big Ip Next Central Manager Security Vulnerabilities

The Central Manager user session refresh token does not expire when a user logs out

CVE-2024-39809 8.8 - High - August 14, 2024

The Central Manager user session refresh token does not expire when a user logs out.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

Insufficient Session Expiration

When generating QKView of BIG-IP Next instance

CVE-2024-41719 5.5 - Medium - August 14, 2024

When generating QKView of BIG-IP Next instance from the BIG-IP Next Central Manager (CM), F5 iHealth credentials will be logged in the BIG-IP Central Manager logs.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Insertion of Sensitive Information into Log File

BIG-IP Next Central Manager may allow an attacker to lock out an account that has never been logged in

CVE-2024-37028 5.3 - Medium - August 14, 2024

BIG-IP Next Central Manager may allow an attacker to lock out an account that has never been logged in.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

authentification

An improper certificate validation vulnerability exists in BIG-IP Next Central Manager and may

CVE-2024-33612 8 - High - May 08, 2024

An improper certificate validation vulnerability exists in BIG-IP Next Central Manager and may allow an attacker to impersonate an Instance Provider system. A successful exploit of this vulnerability can allow the attacker to cross a security boundary.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Improper Certificate Validation

BIG-IP Next Central Manager (CM) may allow an unauthenticated, remote attacker to obtain the BIG-IP Next LTM/WAF instance credentials

CVE-2024-32049 7.4 - High - May 08, 2024

BIG-IP Next Central Manager (CM) may allow an unauthenticated, remote attacker to obtain the BIG-IP Next LTM/WAF instance credentials.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

An SQL injection vulnerability exists in the BIG-IP Next Central Manager API (URI)

CVE-2024-26026 9.8 - Critical - May 08, 2024

An SQL injection vulnerability exists in the BIG-IP Next Central Manager API (URI).  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

SQL Injection

An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI)

CVE-2024-21793 9.8 - Critical - May 08, 2024

An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI).  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

SQL Injection

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for F5 Networks Big Ip Next Central Manager or by F5 Networks? Click the Watch button to subscribe.

F5 Networks
Vendor

subscribe