5 matches found
K000156734: BIG-IP Configuration utility vulnerability CVE-2026-40699
Security Advisory Description A vulnerability exists in the undisclosed pages in the Configuration utility that may allow a low-privileged authenticated attacker to access to undisclosed sensitive information. CVE-2026-40699 Impact This vulnerability may allow a low-privileged authenticated...
CVE-2025-59269 BIG-IP Configuration utility XSS vulnerability
A stored cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
F5 BIG-IP Configuration Utility Cross-Site Scripting Vulnerability (CNVD-2024-22215)
F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. A cross-site scripting vulnerability exists in the F5 BIG-IP configuration utility that can be exploited by an attacker to run...
F5 Networks BIG-IP : BIG-IP Configuration utility vulnerability (K29923912)
The Certificate Administrator user role and higher privileged roles can perform arbitrary file reads outside of the web root directory. CVE-2020-5916 Impact Requests to the Configuration utilitycan result in arbitrary file reads outside of the web root directory. C Tenable Network Security, Inc...
F5 Networks BIG-IP : BIG-IP Configuration utility vulnerability (K00363258)
A local file vulnerability exists in the BIG-IP Configuration utility that exposes files containing F5-provided data only, and do not include configuration data, proxied traffic, or other potentially sensitive customer data. CVE-2018-5525 Impact Authenticated users may be able to retrieve files...