CVE-2024-21789

When a BIG-IP ASM/Advanced WAF security policy is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*

History

12 Dec 2024, 19:11

Type Values Removed Values Added
First Time F5 big-ip Advanced Web Application Firewall
F5
F5 big-ip Application Security Manager
CPE cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
References () https://my.f5.com/manage/s/article/K000137270 - () https://my.f5.com/manage/s/article/K000137270 - Vendor Advisory

21 Nov 2024, 08:55

Type Values Removed Values Added
References () https://my.f5.com/manage/s/article/K000137270 - () https://my.f5.com/manage/s/article/K000137270 -

14 Feb 2024, 18:04

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-14 17:15

Updated : 2024-12-12 19:11


NVD link : CVE-2024-21789

Mitre link : CVE-2024-21789

CVE.ORG link : CVE-2024-21789


JSON object : View

Products Affected

f5

  • big-ip_advanced_web_application_firewall
  • big-ip_application_security_manager
CWE
CWE-772

Missing Release of Resource after Effective Lifetime