CVE-2024-47139

A stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IQ Configuration utility that allows an attacker with the Administrator role to run JavaScript in the context of the currently logged-in user.

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Published: Oct 16, 2024
Updated: May 4, 2025
CVE: CVE-2024-47139
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
f5 / big-iq_centralized_management	8.2.0	8.2.0.x

https://my.f5.com/manage/s/article/K000141080

Vulnerability Database

CVE-2024-47139