3 matches found
F5 Networks BIG-IP : BIG-IP Configuration utility XSS vulnerability (K000138894)
The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.4 / 16.1.4.3 / 17.1.1.3. It is, therefore, affected by a vulnerability as referenced in the K000138894 advisory. - A reflected cross-site scripting XSS vulnerability exist in undisclosed page of the BIG-IP...
CVE-2024-33604
CVE-2024-33604 affects F5 BIG-IP Configuration Utility. A reflected XSS exists in an undisclosed page, enabling JavaScript execution in the context of the logged-in user (potentially escalating to admin if via Advanced Shell). Affected versions include 17.1.0–17.1.1, 16.1.0–16.1.4, and 15.1.0–15....
CVE-2024-33604 BIG-IP Configuration utility XSS vulnerability
A reflected cross-site scripting XSS vulnerability exist in undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...