Unrated severityNVD Advisory· Published Aug 2, 2023· Updated Sep 27, 2024
BIG-IP Configuration utility vulnerability
CVE-2023-38138
Description
A reflected cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility which allows an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected products
2Patches
Vulnerability mechanics
References
1- my.f5.com/manage/s/article/K000133474mitrevendor-advisory
News mentions
0No linked articles in our index yet.