VYPR
Unrated severityNVD Advisory· Published Oct 29, 2020· Updated Aug 4, 2024

CVE-2020-5932

CVE-2020-5932

Description

On BIG-IP ASM 15.1.0-15.1.0.5, a cross-site scripting (XSS) vulnerability exists in the BIG-IP ASM Configuration utility response and blocking pages. An authenticated user with administrative privileges can specify a response page with any content, including JavaScript code that will be executed when preview is opened.

Affected products

2
  • F5 Networks/BIG-IP ASMdescription
  • F5, Inc./Big IPllm-fuzzy
    Range: >=15.1.0 <=15.1.0.5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.