F5 Networks BIG-IP : BIG-IP and BIG-IQ Configuration utility vulnerability (K000156761)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0. It is, therefore, affected by a vulnerability as referenced in the K000156761 advisory. An authenticated remote code execution vulnerability through undisclosed vectors exists in the BIG-IP an...

CVE-2026-41957 BIG-IP and BIG-IQ Configuration utility vulnerability

An authenticated remote code execution vulnerability through undisclosed vectors exists in the BIG-IP and BIG-IQ Configuration utility. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

EUVD-2021-10142

Malware in sbrugna...

CVE-2021-23024

On version 8.0.x before 8.0.0.1, and all 6.x and 7.x versions, the BIG-IQ Configuration utility has an authenticated remote command execution vulnerability in undisclosed pages. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2024-47139

A stored cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IQ Configuration utility that allows an attacker with the Administrator role to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical...

CVE-2024-47139

A stored cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IQ Configuration utility that allows an attacker with the Administrator role to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical...

PT-2024-32431 · F5 · Big-Iq

Name of the Vulnerable Software and Affected Versions: BIG-IQ versions prior to 8.2.0.1 BIG-IQ versions prior to 8.3.0 Description: A stored cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IQ Configuration utility. This issue allows an attacker with the Administrat...

CVE-2021-23024

On version 8.0.x before 8.0.0.1, and all 6.x and 7.x versions, the BIG-IQ Configuration utility has an authenticated remote command execution vulnerability in undisclosed pages. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2021-23024

The CVE-2021-23024 issue affects F5 BIG-IQ Centralized Management, specifically the BIG-IQ Configuration utility. Affected versions include BIG-IQ 8.x before 8.0.0.1 and all 6.x/7.x lines. The root cause is command injection via the configuration utility due to undisclosed/poor input handling, en...

CVE-2021-23024

On version 8.0.x before 8.0.0.1, and all 6.x and 7.x versions, the BIG-IQ Configuration utility has an authenticated remote command execution vulnerability in undisclosed pages. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...