4 matches found
K41704442: Reflected XSS vulnerability in an undisclosed Configuration utility page CVE-2018-15315
Security Advisory Description A reflected Cross-Site Scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute JavaScript in the context of the current logged-in user. CVE-2018-15315 Impact BIG-IP A remote unauthenticated...
F5 Networks BIG-IP : Reflected XSS vulnerability in an undisclosed Configuration utility page (K41704442)
A reflected Cross-Site Scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute JavaScript in the context of the current logged-in user. CVE-2018-15315 Impact BIG-IP A remote unauthenticated attacker could potentially exploit...
CVE-2018-15315
On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a reflected Cross Site Scripting XSS vulnerability in an undisclosed Configuration Utility page...
CVE-2018-15315
The CVE-2018-15315 issue affects F5 BIG-IP’s Configuration utility page (reflected XSS). A remote unauthenticated attacker can trigger JavaScript execution in the user’s browser via a crafted URL. Affected versions: BIG-IP 13.0.0–13.1.1 and 12.1.0–12.1.3.6. Remediation (where listed): upgrade to ...