2 matches found
K30585021: BIG-IQ XSS vulnerability CVE-2021-23006
Security Advisory Description Undisclosed BIG-IQ pages have a reflected cross-site scripting vulnerability. CVE-2021-23006 Impact An attacker may exploit this vulnerability using a crafted URL to a reflected cross-site scripting XSS in an undisclosed page of the BIG-IQ user interface. Security...
CVE-2021-23006
CVE-2021-23006 concerns a reflected cross-site scripting (XSS) vulnerability in undisclosed BIG-IQ pages. According to F5 advisory K30585021, affected BIG-IQ versions include 7.0.0–7.1.0 and 6.0.0–6.1.0, with fixes introduced in 8.0.0 for the BIG-IQ REST services. The issue can be triggered by cr...