Lucene search
F5CVELIST:CVE-2024-26026HistoryMay 08, 2024 - 3:01 p.m.
CVE-2024-26026 BIG-IP Central Manager SQL Injection
2024-05-0815:01:28
CWE-200
f5
www.cve.org
1
sql injection
big-ip
central manager
api
cve-2024-26026
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
9.0%
An SQL injection vulnerability exists in the BIG-IP Next Central Manager API (URI). Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
CNA Affected
[
{
"defaultStatus": "unknown",
"product": "BIG-IP Next Central Manager",
"vendor": "F5",
"versions": [
{
"lessThan": "20.2.0",
"status": "affected",
"version": "20.0.1",
"versionType": "custom"
}
]
}
]References
Related
githubexploit
githubexploit
Exploit for CVE-2024-26026
2024-05-13 22:04:01
Exploit for CVE-2024-26026
2024-05-09 03:14:14
nvd
nvd
CVE-2024-26026
2024-05-08 15:15:08
nessus
nessus
F5 BIG-IP Next Central Manager 20.0.1 < 20.2.0 SQL Injection (K000138733)
2024-05-09 00:00:00
F5 BIG-IP Next Central Manager < 20.2.0 SQLi (K000138733) (Direct Check)
2024-05-09 00:00:00
cve
cve
CVE-2024-26026
2024-05-08 15:15:08
f5
f5
K000138733 : BIG-IP Next Central Manager SQL Injection vulnerability CVE-2024-26026
2024-05-08 00:00:00
K000139404 : Quarterly Security Notification (May 2024)
2024-05-08 00:00:00
wallarmlab
wallarmlab
thn
thn
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
9.0%
Related for CVELIST:CVE-2024-26026