CVE-2024-24966

Name of the Vulnerable Software and Affected Versions F5OS (affected versions not specified)

Description The issue is related to the implementation of the LDAP protocol in F5OS, which is associated with deficiencies in the authorization mechanism. When LDAP remote authentication is configured, a remote user without an assigned role may be incorrectly authorized. This could allow an attacker to bypass security restrictions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.