Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the access policy logout page (logout.inc) in F5 BIG-IP APM 10.1.0 through 10.2.4 and 11.1.0 through 11.3.0 allows remote attackers to inject arbitrary web script or HTML via the LastMRH_Session cookie.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
F5 BIG-IP APM Access Policy Logout Page 跨站脚本漏洞
Vulnerability Description
F5 BIG-IP Access Policy Manager(APM)是美国F5公司的一套访问和安全解决方案。该解决方案提供统一访问关键业务应用和网络的功能。 F5 BIG-IP APM 10.1.0至10.2.4版本和11.1.0至11.3.0版本中的访问策略退出页面(logout.inc)中存在跨站脚本漏洞。远程攻击者可借助LastMRH_Session cookie利用该漏洞注入任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A