4 matches found
F5 Networks BIG-IP : F5 BIG-IP Guided Configuration XSS vulnerability (K21317311)
The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.3 / 15.1.8 / 16.1.3.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K21317311 advisory. - On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP APM, and F5...
K21317311: F5 BIG-IP Guided Configuration XSS vulnerability CVE-2022-27230
Security Advisory Description A reflected cross-site scripting XSS vulnerability exists in an undisclosed page of F5 BIG-IP Guided Configuration that allows an attacker to execute JavaScript in the context of the currently logged-in user. CVE-2022-27230 Impact An attacker may exploit this...
CVE-2022-27230
On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP APM, and F5 BIG-IP Guided Configuration GC all versions prior to 9.0, a reflected cross-site scripting XSS vulnerability exists in an undisclosed page of F5 BIG-IP Guided Configuration that allows an attacker to...
CVE-2022-27230
CVE-2022-27230 describes a reflected XSS vulnerability in F5 BIG-IP Guided Configuration (GC) pages and BIG-IP APM. Affected: BIG-IP APM (versions 11.6–16.1.x) and GC (prior to 9.0). Root cause: reflected JavaScript execution in an undisclosed GC page when accessed by an authenticated user; explo...