Lucene search
K

4 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.36 views

K29500533: TMUI XSS vulnerability CVE-2022-23013

Security Advisory Description A DOM-based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute JavaScript in the context of the currently logged-in user. CVE-2022-23013 Impact An attacker may exploit this...

8.8CVSS7.7AI score0.00797EPSS
Exploits0Affected Software2
NVD
NVD
added 2022/01/25 8:15 p.m.27 views

CVE-2022-23013

On BIG-IP DNS & GTM version 16.x before 16.1.0, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all versions of 13.1.x, 12.1.x, and 11.6.x, a DOM-based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute...

8.8CVSS0.00797EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/01/25 7:11 p.m.38 views

CVE-2022-23013

On BIG-IP DNS & GTM version 16.x before 16.1.0, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all versions of 13.1.x, 12.1.x, and 11.6.x, a DOM-based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute...

8AI score0.00797EPSS
Exploits0References1
CVE
CVE
added 2022/01/25 7:11 p.m.93 views

CVE-2022-23013

CVE-2022-23013 is a DOM-based XSS vulnerability in the BIG-IP Configuration utility affecting BIG-IP DNS & GTM. Affected: 16.x before 16.1.0, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all 13.1.x/12.1.x/11.6.x. Exploitation would run JavaScript in the user’s context. Remediation per F5: fi...

8.8CVSS7.8AI score0.00797EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder