cbcvebase.
CVE-2025-24319
published 2025-02-05

CVE-2025-24319: When BIG-IP Next Central Manager is running, undisclosed requests to the BIG-IP Next Central Manager API can cause the BIG-IP Next Central Manager Node's…

high7.1CVSS 4.0
AVNACLATNPRLUINVCNVINVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
When BIG-IP Next Central Manager is running, undisclosed requests to the BIG-IP Next Central Manager API can cause the BIG-IP Next Central Manager Node's Kubernetes service to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected

3 ranges
VendorProductVersion rangeFixed in
f5big-ip_next_central_manager
f5big-ip_next_central_manager>= 20.1.0 < 20.3.020.3.0
f5big-ip_next_central_manager>= 20.2.0 < 20.3.020.3.0