Unrated severityNVD Advisory· Published May 3, 2023· Updated Jan 29, 2025
BIG-IP TMUI XSS vulnerability
CVE-2023-27378
Description
Multiple reflected cross-site scripting (XSS) vulnerabilities exist in undisclosed pages of the BIG-IP Configuration utility which allow an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected products
2Patches
Vulnerability mechanics
References
1- my.f5.com/manage/s/article/K000132726mitrevendor-advisory
News mentions
0No linked articles in our index yet.