PT-2024-19382 · F5 · Big-Ip

The affected software is BIG-IP, specifically when deployed in high availability HA mode. The issue arises when an iControl REST API token is updated, and this change is not synchronized with the peer device. An exploit for this issue is available. The BIG-IP software is affected when deployed in...

CVE-2022-35728

In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, and BIG-IQ version 8.x before 8.2.0 and all versions of 7.x, an authenticated user's iControl REST token may remain valid for a limited time after logging...