Lucene search
PRIOn knowledge basePRION:CVE-2022-28707HistoryMay 05, 2022 - 5:15 p.m.
Cross site scripting
2022-05-0517:15:00
PRIOn knowledge base
www.prio-n.com
1
0.001 Low
EPSS
Percentile
22.9%
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, and 14.1.x versions prior to 14.1.4.6, a stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility (also referred to as the BIG-IP TMUI) that allows an attacker to execute JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
References
Related
cnvd
cnvd
F5 BIG-IP TMUI Cross-Site Scripting Vulnerability (CNVD-2022-77533)
2022-05-07 00:00:00
nvd
nvd
CVE-2022-28707
2022-05-05 17:15:14
cvelist
cvelist
CVE-2022-28707
2022-05-04 00:00:00
cve
cve
CVE-2022-28707
2022-05-05 17:15:14
f5
f5
K70300233 : BIG-IP TMUI XSS vulnerability CVE-2022-28707
2022-05-04 00:00:00
K55879220 : Overview of F5 vulnerabilities (May 2022)
2022-05-04 00:00:00
nessus
nessus
F5 Networks BIG-IP : BIG-IP TMUI XSS vulnerability (K70300233)
2022-05-05 00:00:00