CVE-2024-39809
published 2024-08-14CVE-2024-39809: The Central Manager user session refresh token does not expire when a user logs out. Note: Software versions which have reached End of Technical Support (EoTS)…
high8.9CVSS 4.0
AVNACHATPPRNUIAVCHVIHVAHSCHSIHSAHEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
The Central Manager user session refresh token does not expire when a user logs out. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f5 | big-ip_next_central_manager | — | — |
| f5 | big-ip_next_central_manager | — | — |
| f5 | big-ip_next_central_manager | >= 20.1.0 < 20.2.0 | 20.2.0 |