vulnerability
F5 Networks: CVE-2024-21789: K000137270: BIG-IP Advanced WAF and BIG-IP ASM vulnerability CVE-2024-21789
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Feb 14, 2024 | Mar 7, 2024 | Aug 11, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Feb 14, 2024
Added
Mar 7, 2024
Modified
Aug 11, 2025
Description
When a BIG-IP ASM/Advanced WAF security policy is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Solution
f5-big-ip-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.