Unrated severityNVD Advisory· Published Jun 18, 2009· Updated Jun 16, 2026
CVE-2009-2119
CVE-2009-2119
Description
Cross-site scripting (XSS) vulnerability in the login interface (my.logon.php3) in F5 FirePass SSL VPN 5.5 through 5.5.2 and 6.0 through 6.0.3 allows remote attackers to inject arbitrary web script or HTML via a base64-encoded xcho parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 5.5-5.5.2, 6.0-6.0.3
Patches
Vulnerability mechanics
References
10- www.securitytracker.com/idnvdPatch
- www.vupen.com/english/advisories/2009/1570nvdPatchVendor Advisory
- secunia.com/advisories/35418nvdVendor Advisory
- secunia.com/advisories/35426nvdVendor Advisory
- www.fox-it.com/nl/nieuws-en-events/nieuws/laatste-nieuws/nieuwsartikel/f5-firepass-cross-site-scripting-vulnerability/106nvdVendor Advisory
- osvdb.org/55040nvd
- www.securityfocus.com/archive/1/504232/100/0/threadednvd
- www.securityfocus.com/bid/35312nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/51064nvd
- www.fox-it.com/uploads/pdf/advisory_xss_f5_firepass.pdfnvd
News mentions
0No linked articles in our index yet.