3 matches found
CVE-2023-38423
CVE-2023-38423 concerns a cross-site scripting (XSS) in the BIG-IP Configuration utility. The vulnerability exists in an undisclosed page of the Configuration utility and can allow an attacker to run JavaScript in the context of the currently logged-in user, potentially compromising the BIG-IP sy...
K000134535: BIG-IP Configuration utility vulnerability CVE-2023-38423
Security Advisory Description A cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. CVE-2023-38423 Impact An authenticated attacker may exploit this...
F5 Networks BIG-IP : BIG-IP Configuration utility vulnerability (K000134535)
The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.5 / 15.1.9.1 / 16.1.3.5 / 17.1.0.2. It is, therefore, affected by a vulnerability as referenced in the K000134535 advisory. - A cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP...