5 matches found
CVE-2020-5889
On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, in BIG-IP APM portal access, a specially crafted HTTP request can lead to reflected XSS after the BIG-IP APM system rewrites the HTTP response from the untrusted backend server and sends it to the client...
K24415506: BIG-IP APM portal access reflected XSS vulnerability CVE-2020-5889
Security Advisory Description In BIG-IP APM portal access, a specially crafted HTTP request can lead to reflected XSS after the BIG-IP APM system rewrites the HTTP response from the untrusted backend server and sends it to the client. CVE-2020-5889 Impact An attacker can craft a malicious URL and...
CVE-2020-5889
On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, in BIG-IP APM portal access, a specially crafted HTTP request can lead to reflected XSS after the BIG-IP APM system rewrites the HTTP response from the untrusted backend server and sends it to the client...
CVE-2020-5889
CVE-2020-5889 affects F5 BIG-IP APM portal access. Vulnerable in BIG-IP APM versions 15.1.0–15.1.0.1, 15.0.0–15.0.1.2, and 14.1.0–14.1.2.3; an attacker can cause reflected XSS by a crafted HTTP request after the system rewrites the response from the untrusted backend. Remediation per advisories: ...
F5 Networks BIG-IP : BIG-IP APM portal access reflected XSS vulnerability (K24415506)
The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.2.4 / 15.0.1.3 / 15.1.0.2. It is, therefore, affected by a vulnerability as referenced in the K24415506 advisory. - On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, in BIG-IP APM portal access, a...