An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI).  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 18 Sep 2025 20:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200

Thu, 18 Sep 2025 20:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:f5:big-ip_next_central_manager:20.0.1:*:*:*:*:*:*:*
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 18 Sep 2025 20:00:00 +0000

Type Values Removed Values Added
Description An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI).  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI).  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Thu, 12 Dec 2024 19:30:00 +0000

Type Values Removed Values Added
First Time appeared F5
F5 big-ip Next Central Manager
Weaknesses CWE-89
CPEs cpe:2.3:a:f5:big-ip_next_central_manager:*:*:*:*:*:*:*:*
Vendors & Products F5
F5 big-ip Next Central Manager

cve-icon MITRE

Status: PUBLISHED

Assigner: f5

Published:

Updated: 2025-09-18T19:52:06.787Z

Reserved: 2024-04-24T21:34:51.138Z

Link: CVE-2024-21793

cve-icon Vulnrichment

Updated: 2024-08-01T22:27:36.335Z

cve-icon NVD

Status : Analyzed

Published: 2024-05-08T15:15:07.557

Modified: 2025-09-19T20:18:26.590

Link: CVE-2024-21793

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.