A reflected cross-site scripting (XSS) vulnerability exists in the resource information page for authenticated users when a full webtop is configured on the BIG-IP APM system. (CVE-2019-6591)
Impact
An authenticated attacker may be able to inject malicious content.