CVE-2024-22389

🗓️ 14 Feb 2024 16:30:19Reported by f5Type

When BIG-IP is deployed in high availability (HA) and an iControl REST API token is updated, the change does not sync to the peer device

Reporter	Title	Published	Views	Family All 11
CNNVD	F5 BIG-IP Security Vulnerabilities	14 Feb 202400:00	–	cnnvd
Cvelist	CVE-2024-22389 BIG-IP iControl REST API Vulnerability	14 Feb 202416:30	–	cvelist
EUVD	EUVD-2024-19946	3 Oct 202520:07	–	euvd
F5 Networks	K000138353: Quarterly Security Notification (February 2024)	14 Feb 202414:04	–	f5
F5 Networks	K32544615: BIG-IP iControl REST API vulnerability CVE-2024-22389	14 Feb 202413:14	–	f5
Tenable Nessus	F5 Networks BIG-IP : BIG-IP iControl REST API vulnerability (K32544615)	14 Feb 202400:00	–	nessus
NCSC	Vulnerabilities fixed in F5 BIG-IP and BIG-IQ	16 Feb 202400:00	–	ncsc
NVD	CVE-2024-22389	14 Feb 202417:15	–	nvd
Prion	Design/Logic Flaw	14 Feb 202417:15	–	prion
Positive Technologies	PT-2024-19382 · F5 · Big-Ip	14 Feb 202400:00	–	ptsecurity

NVD

Node

f5 big-ip_access_policy_managerRange15.1.0–15.1.9

f5 big-ip_access_policy_managerRange16.1.0–16.1.4

f5 big-ip_access_policy_managerMatch17.1.0

Node

f5 big-iq_centralized_managementRange8.0.0–8.3.0

Node

f5 big-ip_advanced_firewall_managerRange15.1.0–15.1.9

f5 big-ip_advanced_firewall_managerRange16.1.0–16.1.4

f5 big-ip_advanced_firewall_managerMatch17.1.0

Node

f5 big-ip_analyticsRange15.1.0–15.1.9

f5 big-ip_analyticsRange16.1.0–16.1.4

f5 big-ip_analyticsMatch17.1.0

Node

f5 big-ip_application_acceleration_managerRange15.1.0–15.1.9

f5 big-ip_application_acceleration_managerRange16.1.0–16.1.4

f5 big-ip_application_acceleration_managerMatch17.1.0

Node

f5 big-ip_application_security_managerRange15.1.0–15.1.9

f5 big-ip_application_security_managerRange16.1.0–16.1.4

f5 big-ip_application_security_managerMatch17.1.0

Node

f5 big-ip_domain_name_systemRange15.1.0–15.1.9

f5 big-ip_domain_name_systemRange16.1.0–16.1.4

f5 big-ip_domain_name_systemMatch17.1.0

Node

f5 big-ip_fraud_protection_serviceRange15.1.0–15.1.9

f5 big-ip_fraud_protection_serviceRange16.1.0–16.1.4

f5 big-ip_fraud_protection_serviceMatch17.1.0

Node

f5 big-ip_global_traffic_managerRange15.1.0–15.1.9

f5 big-ip_global_traffic_managerRange16.1.0–16.1.4

f5 big-ip_global_traffic_managerMatch17.1.0

Node

f5 big-ip_link_controllerRange15.1.0–15.1.9

f5 big-ip_link_controllerRange16.1.0–16.1.4

f5 big-ip_link_controllerMatch17.1.0

Node

f5 big-ip_local_traffic_managerRange15.1.0–15.1.9

f5 big-ip_local_traffic_managerRange16.1.0–16.1.4

f5 big-ip_local_traffic_managerMatch17.1.0

Node

f5 big-ip_policy_enforcement_managerRange15.1.0–15.1.9

f5 big-ip_policy_enforcement_managerRange16.1.0–16.1.4

f5 big-ip_policy_enforcement_managerMatch17.1.0

[
  {
    "defaultStatus": "unknown",
    "modules": [
      "All Modules"
    ],
    "product": "BIG-IP",
    "vendor": "F5",
    "versions": [
      {
        "lessThan": "17.1.1",
        "status": "affected",
        "version": "17.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "16.1.4",
        "status": "affected",
        "version": "16.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1.9",
        "status": "affected",
        "version": "15.1.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
my	www.my.f5.com/manage/s/article/K32544615

05 Sep 2025 15:49Current

7.1High risk

Vulners AI Score7.1

CVSS 3.17.2

EPSS0.00238

SSVC

CWE-613