Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the tree view (pl_tree.php) feature in Application Security Manager (ASM) in F5 BIG-IP 11.3.0 allows remote attackers to inject arbitrary web script or HTML by accessing a crafted URL during automatic policy generation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
F5 BIG-IP Application Security Manager 跨站脚本漏洞
Vulnerability Description
F5 BIG-IP Application Security Manager(ASM)是美国F5公司的一款BIG-IP应用安全管理器,它能够为用户提供应用交付安全解决方案,以及安全的远程接入、保护电子邮件、简化Web接入控制,同时增强网络和应用性能。 F5 BIG-IP 11.3.0版本的ASM中的tree view (pl_tree.php)功能中存在跨站脚本漏洞。远程攻击者可通过在策略自动生成期间访问特制的URL利用该漏洞注入任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A