CVE-2024-28883

BIG-IP APM browser network access VPN client vulnerability

Description

An origin validation vulnerability exists in BIG-IP APM browser network access VPN client for Windows, macOS and Linux which may allow an attacker to bypass F5 endpoint inspection. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

INFO

Published Date :

2024-05-08T15:01:24.931Z

Last Modified :

2024-08-02T01:03:50.247Z

Source :

f5

AFFECTED PRODUCTS

The following products are affected by CVE-2024-28883 vulnerability.

Vendors	Products
F5	Big-ip Access Policy Manager Big-ip Access Policy Manager Client Big-ip Apm

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-28883.

URL	Resource
https://my.f5.com/manage/s/article/K000138744

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact